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SECTION  1.  INTRODUCTION 


1.1  Wdcome 

Wdconie  to  the  Defense  Data  Network,  or  the  DDN,  as  it  is  imve  commonly  called.  The  DDN  is  a  powerful 
operatioaal  militaiy  network.  It  might  be  thought  of  as  an  'umbieHa”  networic  composed  of  several  large 
s^nents  or  subottwoiks.  The  unclassified  p(»tion  of  the  DDN  is  a  subnetwork  known  as  the  MILNET.  The 
MILNET  connects  the  DDN  to  an  even  larger  netwoik  that  includes  military  contractors,  univosities,  and 
research  centers;  this  entire  collection  of  interconnected  netwcaks  is  called  the  Internet  Its  usos  number  in  the 
millions.  It  is  the  MILNET  on  whidi  this  document  focuses. 

The  DDN  New  User  Guide  explains  the  policies,  concepts,  and  coivendons  of  the  DDN,  with  major  emphasis  on 
the  MILNET.  The  Guide  contains  an  overview  of  and  a  tutmial  introduction  to  the  DDN,  along  with 
descrqNkms  of  its  mote  investing  netwcHk  programs  and  sovices.  It  is  not  intended  to  be  a  highly  technical 
docmnent,  and  it  does  not  cover  the  procedures  for  attaching  hardware,  terminals,  or  other  equipment  to  the 
network.  This  information  is  provid^  in  other  documents  [1,2]. 

Ofigimdly,  the  MILNET  was  an  integral  part  of  the  research  ndwt^  known  as  the  ARPANET  (after  the 
Advanced  Research  lYojects  Agency,  wh^  was  the  qxxtsor).  hi  1984,  the  MILNET  and  the  ARPANET  were 
physically  sqmiaied,  and  gateways'  were  installed  to  allow  traffic  to  be  interchanged  between  the  MILNET  and 
the  research  networks  sponsored  by  DARPA  (the  Defense  Advanced  Research  Projects  Agency).  By  1990,  the 
origiiial  ARPANET  technolQgy  had  become  dtsolete,  and  the  ARPANET  was  discontinued  in  June  of  that  year. 

The  DIM  affords  its  users  a  wealth  of  services  and  resources.  Many  of  your  colleagues  already  wok  on  the 
network,  and  you  will  be  able  to  communicate  with  them  quickly  and  easily  even  though  they  may  be  hundreds 
of  miles  awsy.  The  DDN  also  allows  you  to  participate  in  discussions  about  topics  of  interest  to  you  and  gives 
you  the  opportunity  to  use  networit  programs  and  tools  to  enhance  your  own  cqtabilities. 

Using  a  cortqmtcr  network  is  not  difficult  However,  as  with  any  new  tool,  using  it  proficiently  requires  learning 
some  procedures  and  guidelines  and  practicirig  your  new  skills.  The  DDN  New  User  Guide  will  jvovide  the 
badcgroimd  information  necessary  to  get  you  started.  We  hope  you  find  it  a  useful  introduction  to  the  DDN. 


IJl  Using  This  Guide 

The  DDN  New  User  Guide  is  written  for  the  begiiuiing  usa  and  should  be  supplemented  with  reading  from  oUict 
sources.  Networit-qrecific  terms  are  defined  both  in  context  and  in  the  Glossary  (Section  1 1).  Throughout  the 
text,  r^nences  appear  in  the  form  "[n]”.  The  bracketed  numbms  refer  to  citations  in  the  Bibliography  (Section 
10),  which  lists  doaiments  containing  additional  exidanatory  at  background  information.  Also,  check  online  help 
systems  and  the  documentation  that  usually  accompanies  the  network  programs  you  use.  (Watch  fOT  pointers  to 
online  he^)  files  when  you  first  access  a  program  or  sovice.)  We  oicourage  you  to  expand  your  knowledge  of 
the  networit  by  consulting  these  and  oihm:  information  sources  whenever  you  can. 


'  Gateways  are  special  computes  with  the  capability  of  interconnecting  networks.  Gateways  are  necessary 
when  rooth^  messages  through  more  than  one  networit. 
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The  Guide  is  divided  into  sections  and  subsectkHis,  each  covering  topics  of  interest  to  a  new  usct.  A  summary 
Ot  the  contents  (tf  each  section  follows. 

Section  1  (this  section)  is  a  Imef  introduction  to  the  Guide. 

*  Section  2,  The  Defoise  Data  Network,  describes  the  structure  of  the  DDN  and  its  administration.  It 
also  describes  the  MELNET  and  the  role  of  the  Defense  Network  System  Organization  (DNSO).  It 
provides  a  Mef  histrxical  sketch  of  the  evolution  of  the  DDN  from  the  original  ARPANET. 

’  Section  3,  Netwmk  Connection,  describes  the  ways  in  which  various  machines  access  the  network. 

*  Section  4,  DDN  TAC  Access,  describes  the  procedures  for  obtaining  and  using  a  TAC  Access  Card 
and  provides  detailed  procedures  fw  accessing  the  network  through  a  Tominal  Access  Controller 
(TAC)  or  a  Mini-TAC.  Also  included  is  background  information  that  will  be  helpful  to  TAC  and 
?4ini-TAC  users,  such  as  common  error  messages,  TAC  commands,  and  instructions  for  performing 
file  transfers. 

■  Section  5.  Netwcnk  Use,  provides  "how-to”  instnK:tions  for  some  of  the  DDN’s  most  useful 
services,  such  as  dectronic  mail  programs,  FTP,  and  TELNET. 

Section  6,  The  DDN  Netwcxk  InfrMmation  Center  (NIC),  describes  in  detail  the  databases, 
programs,  files,  documents,  and  services  rrffered  by  the  NIC. 

•  Section  7,  Security  Considerations  and  Netwr^  Conduct,  explains  the  legal  and  courtesy  standards 
of  the  netwok.  The  imprHtance  of  host  and  netwrxk  security  is  discussed,  and  in  Section  7.1,  the 
retpiiranents  for  legitimate  access  to  the  DDN  are  defined.  Be  sure  to  read  the  etiquette  section 
(Section  7.3).  Adhermg  to  the  guidelines  given  thoe  will  deaease  your  chances  of  unwittingly 
(lending  odier  users  during  your  first  days  cm  the  net. 

Section  8,  Netwok  Concepts  Overview,  provides  some  background  information  on  terms  and 
concqKs  that  a  new  user  might  hear  but  not  understand.  This  section  includes  discussions  on  topics 
such  as  the  Domain  Name  System  (DNS),  network  addressing.  Government  Open  Systems 
Interconnection  Ptofile  (GOSIP),  and  gateway  concentrators. 

Section  9,  Network  Service  Centers  and  Contacts,  describes  network  service  providers  and  how  to 
reach  them.  The  DDN  Network  Information  Center  (NIC)  is  logically  the  first  place  to  look  for 
infocmatioa  unavailable  at  the  local  levd.  The  NIC  can  help  you  solve  network  use  problems, 
locale  documents  and  resources,  or  identify  api»X}(Hiate  points  of  contact  (POCs)  for  further 
assistance. 

•  Sections  10  and  11  tre  a  Bibliogrrqrhy  and  a  Glossary  of  terms  used  in  this  guide. 

The  tqrpendices  contain  information  about  resources  available  to  network  users  and  answers  to  some 
(rf  the  questions  most  (rften  asked  by  new  users. 

A  feedback  fonn  is  located  at  the  back  of  the  Guide.  We  encourage  our  reados  to  use  the  form  to 
make  suggestions  ot  point  out  errors.  We  value  your  comments  and  suggestions  and  will  consido^ 
diem  fior  future  vnsions  rtf  the  DDN  New  User  Guide.  You  may  also  send  suggestions  online  to 
NIC@NIC.DDN.hflL. 


2 


«C  60001.  October  1992 


DRAFT 


INTRODUCTION 


[.3  Document  Convoitions 

rhis  document  uses  several  printing  conventions  to  identify  the  diffnence  between  charactos  you  type  (input) 
od  those  that  a  conquitiv  prints  to  your  screen  (output).  These  conventions  are  described  below. 

Jnless  otherwise  indicated,  all  user  input  is  tominated  by  {sessing  the  carriage  return  or  Enter  key  on  your 
aeyboaid.  (Pressing  this  key  does  not  cause  a  visible  charKter  to  be  printed.)  In  this  document,  the  carriage 
Btam  or  Enter  key  (J)  is  rqiresented  as  <Retuni>.  Both  input  and  output  are  characterized  by  a  typewriter-like 
out  to  further  dififeientiate  diem  from  the  surrounding  text. 


U.1  User  Input  Display 

four  itqiut  0.e.,  die  characters  you  type)  is  represented  in  bold  typeface: 


Tour  li^nst  looka  Ilka  fchls. 


[32  Machine  Output  Display 

I  non-bdd.  non-propcMiitmal  font  rqxesents  machine  prompts,  messages,  and  other  output. 


Machine  text  looks  like  this. 


U  J  Omnnent  Display 

n  exanqiles  or  instructions.  Italics  indicate  comments  we  have  inserted  fcx  further  clarification. 
Owr  comments  look  like  this. 


Typing  Cmitnri  Characters 

a  usii^  the  network,  it  may  sometimes  be  necessary  fw  you  to  type  special  characters  known  as  control 
haracters.  These  charactms  are  often  represented  in  documentation  by  a  letter  prefixed  with  the  circumflex 
haracter  "a" — e.g.,  ^y.  When  entering  these  control  characters,  you  must  press  the  control  key  simultaneously 
ridi  the  desired  letter.  For  examine,  if  you  see  a  "^y"  in  input  instructions,  this  indicates  a  control-y,  and  it 
ternis  that  you  should  press  the  conuol  key  while  you  type  the  lett^  ”y”.  Throughout  this  Guide,  the  control 
ey  is  rqvesented  1^  die  circumflex,  unless  otherwise  stated. 
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SECTION  2.  THE  DEFENSE  DATA  NETWORK 


2.1  Network  Overview 

When  you  access  a  local  computer,  you  are  largely  unaware  of  what  kind  of  link  connects  your  terminal  to  the 
computer  you  wish  to  use.  The  tominal  seems  to  be  the  computer,  since  it  prints  or  displays  what  is  h^pening. 
As  you  progress  in  your  w<Hk,  you  may  need  to  move  data  your  local  compute  onto  another  computer,  or 
you  may  wish  to  s^  a  message  to  a  colleague  working  on  a  computer  at  a  distant  location.  At  this  point,  the 
usefulness  of  a  communication  network  becomes  apparent 

A  communication  network  is  a  group  of  computers  joined  by  data-carrying  links.  A  network  may  be  as  small  as 
two  or  three  posonal  computes  tied  together  by  local  telephone  lines  and  located  in  the  same  building,  or  it  may 
be  a  vast  complex  of  computers  spread  over  the  world,  whose  data  links  include  long-haul  telephone  lines, 
satdlite  relays,  fiber-c^tic  cables,  or  radio  links.  It  is  also  possible  for  several  different  networks  to  be 
interconnected  to  fwm  an  "internetwork"  or  "intemeL" 

Everyone  is  familiar  with  telephones.  Phone  sets  inside  the  house  connect  to  outside  lines  that  lead  into  nearby 
local  or  regional  telqrhone  exchanges.  These  exchanges  are  connected  to  make  up  one  or  more  national 
tdqrhone  systems.  The  natiotud  telephone  systems  communicate  with  each  otho'  to  make  up  an  international 
telqrhone  network.  There  are  also  inivate  telqrhone  systems  that  have  their  own  equipment  and  are  totally 
separate  from  the  public  telephone  system. 

Computer  netwtsks  fcdlow  a  similar  pattern.  Local  area  netwrxks  (called  LANs)  may  connect  computers  within 
a  building  or  in  different  buildings.  A  LAN  may  remain  separate,  or  it  may  interconnect  to  regional,  national,  or 
worldwide  commercial  or  goverrunent  networks.  Many  of  these  large  and  small  networks  are  gradually 
intnconnecting  through  gateways  to  fcmn  a  worldwide  system  of  data  networks  similar  to  the  telephone  system. 
Indeed,  <nnce  many  computer  networks  use  telqrhone  communication  lines  to  carry  data  from  one  computer  to 
the  nrxt,  the  two  systems  are  closely  intowoven. 

You  do  not  need  detailed  knowledge  of  this  technology  to  use  a  network,  but  you  do  need  to  understand  the 
concqx  of  going  through  layers  of  equipment  and  interconnections.  Effective  network  use  also  requires  knowing 
the  online  addresses  of  petqrle  or  machines  with  which  you  wish  to  communicate  and  knowing  your  own 
network  address  as  well. 

The  DIW  is  a  qrecial  kind  of  data  netwmk  known  as  a  packet-switched  netwcHk.  On  this  network,  a  tominal  or 
a  source  host  computo’  (generally  just  called  a  host)  passes  a  message  along  with  its  destination  address  to  the 
k>cal  Packet  Switching  Node  computer.  The  PSN  breaks  the  message  into  packets,  or  smaller  chunks  of 
data.  Each  of  these  packets  has  the  same  destination  address  and  source  address  as  the  original  message,  plus  a 
sequence  number  indicating  which  piece  of  the  miginal  message  it  represents.  The  packets  are  passed  from  PSN 
to  PSN  until  they  reach  the  destination  PSN,  where  they  are  reassembled  in  their  original  order  and  delivered  to 
die  destination  host 

A  packet  switched  netwmk  differs  fiom  a  circuit-switched  network  in  that  no  predetermined  dedicated  path  exists 
for  ddivoy  of  the  data.  Eadi  packet  takes  the  best  route  that  it  can  fuid  at  the  time,  and  all  the  packets  in  a 


^Ns  were  originally  known  as  Interface  Message  Processors,  ot  IMPs. 
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message  do  not  necessarily  take  the  same  route.  Once  the  packets  arrive  at  the  destination  PSN,  they  are 
reassembled  in  the  correct  sequence  and  delivered  to  the  destination  host  as  a  complete  message. 


2J2  Network  Access  Methods 


The  Defense  Data  Network  (DDN)  is  made  up  of  a  variety  of  equqmienL  Its  users  provide  terminals,  nuxiems, 
leased  circuits  to  the  PSN,  and  host  computers.  The  DDN  suj^lies  node  computers,  encryption  equipment,  and 
some  siqtport  services.  You  can  reach  the  network  from  your  terminal  in  several  ways  by  using  different 
combinations  of  hardware  in  conjunction  with  different  netwmk  programs.  These  network  connection  methods 
ate  shown  in  Hgure  2-1. 
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A  terminal  may  reach  a  host  in  several  ways. 

A  wire  ot  cable  may  run  directly  from  the  terminal  to  the  computer;  this  is  called  a  hard-wired 
terminal. 

•  A  terminal  may  communicate  with  a  computer  via  a  telephone  connected  to  the  tmninal  through  a 
modem  or  acoustic  coupler,  this  is  called  a  dial-up  t^minal. 

Dial-up  terminals  can  connect  to  the  network  at  speeds  of  from  300  to  9600  bits  per  second  G>ps).  A  spee^  of 
1200  bps  is  common  in  the  cmitinental  United  States,  while  1200  bps  is  more  common  in  EuFq)e. 

[NOTE:  The  q)eed  setting  of  both  your  t»minal  and  your  modem  must  be  the  same  to  enable 
the  two  devices  to  communicate  prc^ierly  with  one  anotho-.] 

With  the  aiqiropriate  equipment,  personal  computers  may  also  be  used  as  terminals.  In  this  case,  the  po^nal 
compute  emulates  (or  acts  like)  a  terminal  when  it  is  u^  in  terminal  mode. 

A  terminal  may  be  directly  attached  to  a  local  area  network  (LAN)  or  to  a  local  switch  (similar  to  a  telephone 
switch).  The  user  c£  such  a  terminal  can  reach  any  computer  on  the  LAN  or  any  computer  connected  to  the 
switch.  The  LAN  may  also  be  connected  to  the  DDN  through  a  gateway,  which  is  a  computer  whose  software 
can  direct  traffic  from  die  LAN  onto  the  larger  long-haul  network  and  vice  versa. 


23  Organization  of  the  DDN 

The  Defense  Data  Network  is  a  large  military  common-user  data  communications  internetwork  operated  for  the 
Department  cf  Ddense  (DoD)  by  the  Defense  Network  Systems  Oigankadon  (DNSO)  of  the  Defense 
Information  Systems  Agency  (DISA).^  The  DDN  is  made  up  of  several  netwtnks.  The  MILNET  is  the  DDN 
networic  diat  is  connect^  m  the  Internet 


2.4  Devetopnient  of  the  DDN 

As  meotioiied  previously,  the  MILNET  is  an  unclassified  military  netwtnk  that  is  part  of  the  DDN.  It  was  built 
using  techiKdogy  developed  as  part  of  the  ARPANET,  which  was  the  prototype  packet-switched  network. 

The  ARPANET  was  built  by  the  Defense  Advanced  Research  Projects  Agency  (DARPA)  in  1969  as  an 
fflqjmiment  to  determine  the  viability  of  a  store-and-forward,  host-to-host  packet-switched  network.  The  network 
designers  wanted  to  demonstrate  that  computers  made  by  different  manufacturers,  of  difierent  sizes,  and  running 
difGnrent  opnating  systems,  could  communicate  with  one  another  across  a  netwoA.  It  was  envisioned  that  usos 
such  a  network  could  share  programs  and  communicate  via  the  network  with  other  users  at  distant  locations. 
The  e^[)aiinent  was  successful,  and  today  many  data  networks  are  modeled  after  the  ARPANET. 

In  1979,  the  Dqwtmmt  of  Defense  decided  to  intercrainect  several  DoD  long-haul  computer  networks  through  a 
set  of  internet  protocols  so  that  these  networks  could  share  the  same  backbone  of  node  computers  linked  by  high¬ 
speed  telqplione  Imes.  Protocds  are  rules  or  standards  by  which  compute  communicate  on  a  netwnk.  The 
ARPANET  protocds  were  devdoped  by  researchers  known  as  the  Internet  Working  Group  (IWG),  under  the 
qxmsorshqi  oi  the  DARPA  Information  Processing  Techniques  Office  (IFTO).  The  protocols  were  tested  for 


’Formerly,  the  Defense  Communications  System  Organization  (DCSO)  and  the  Defense  Communications 
Agency  (DCA),  reqxctively. 


7 


THE  DEFENSE  DATA  NETWORK 


DRAFT 


NIC  60001,  October  1992 


several  years  on  the  ARPANET,  and  they  proved  useful  for  creating  the  networking  environment  that  the  DoD 

wanted. 

In  1982,  die  DoD  issued  a  directive  [3]  adopting  a  single  set  of  communications  protocols  based  on  the 
ARPANET  proloctds.  This  was  Ccdlowed  later  in  1982  by  a  directive  [4]  to  create  the  DDN  as  a  parent,  or 
undicdla,  operational  military  netwnk  made  up  oi  several  existing  cm-  planned  DoD  computer  networks. 

By  1983,  the  ARPANET,  which  was  sdll  considered  an  experimental  network,  had  grown  to  over  300  computers, 
many  used  for  day-to-day  operadtmal  military  purposes  as  well  as  for  research.  Other  military  users  were 
seddng  networkh^  services.  To  meet  this  growing  need  for  an  operational  military  network,  the  DoD  evaluated 
several  network  architectures  and  finally  chose  the  DARPA  Intomet  architecture  as  the  model  for  its  conunon- 
usor  communications  netwmk,  the  DDN. 

In  Sqtiraiber  1984,  the  original  ARPANET  was  sidit  into  two  separate  unclassified  networks — a  military 
reseat  and  development  netwrnk  (ARPANET)  and  a  military  q;)erational  communications  netw(»k  (MILNET). 
The  qdit  returned  to  DARPA  a  network  for  experimentation  and  estaldished  an  uiKlassified  military  netwtxk 
aUe  to  accommodate  the  DoD’s  growing  operational  needs. 

In  June  1990,  the  ARPANET  was  officially  dissolved.  Many  sites  tiiat  were  fmmerly  part  of  the  ARPANET  are 
now  connected  to  the  National  Science  Foundation  Netwmk,  NSFnet  The  MILNET  remains  under  the 
administration  ot  DISA  Plans  fm  upgrading  and  expanding  the  current  network  are  now  underway.  A  Defense 
Research  Intonet  (DRI)  will  meet  d^ense  needs,  while  the  National  Research  and  Education  Network  (NREN) 
wiH  provide  a  national  forum  for  researdi  and  education. 


IS  The  Defoise  Information  Systems  Agency,  Defense  Network  Systems  Organization 
(DISA  DNSO) 

IHSA's  Defnse  Network  Systems  Organizmion  (DNSO)  evolved  fiom  the  Defense  Communications  System 
Organizmioo  in  1991  (the  same  year  in  which  DISA  evrdved  fiom  the  Defense  Communications  Agency).  The 
DNSO  httidles  overall  management  and  opoations.  It  also  sets  policy  guidelines  and  assists  new  military 
subactflieis  in  bringitig  thdr  computers  and  related  equipmoit  onto  the  DDN. 

The  I^SO  provides  many  services  to  network  users  and  potential  network  subscribers.  It  is  responsible  for 

Keqping  the  network  "up  and  numing," 
noviding  user  assistance. 

Setting  prdicies  and  guidelines, 

Anticgnting  growth  and  expansion. 

Assist  new  subscribers. 

Among  its  other  rfaities,  the  ra^SO  also 

Manages  access  control  and  security  for  die  netwmk  backbone. 

Designates  host  and  node  contacts, 

Coonfinates  military  sponsors, 

lYovides  tedmkal  nuuiagement  of  contracts  for  smvices,  equ^ent,  and  software  obtained  fiom 
om^  vendors. 

To  provide  opentknal  management  support  for  the  DDN,  the  DISA  DNSO  has  designated  a  person  to  act  as  the 
piteniy  Point  of  Contact  (POQ  for  operations  for  each  of  the  Droi  networks.  For  examine,  the  MILNET 
Manager  is  reaponsiUe  for  MILNET  operations.  One  of  his^m'  duties  is  to  approve  all  host  connections  to  the 
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MILNET  and  all  changes  to  such  connections.  Fbr  information  about  how  to  contact  the  current  MILNET 
Manager  or  any  of  the  other  DDN  netwrak  managers,  you  may  call  the  DDN  Netwoik  Information  Center.  (See 
Section  6.1.1.) 
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SECTION  3.  NETWORK  CONNECTION 


3.1  Host  Access 

To  open  a  connection  through  the  network  fiom  one  host  to  another,  you  must  first  log  in  to  one  of  the  hosts 
from  a  terminal.  After  logging  in.  you  ntay  tqien  a  connecticm  across  the  netwcnk  to  a  second  host  Once  this 
connection  is  estaUished,  you  may  log  in  to  the  ranote  host  computo'  and  weak  there.  When  you  finish  and  log 
out  the  remote  computer,  die  networir  connectioa  is  closed  and  you  are  back  where  you  began — still  logged  in 
to  the  first  host  In  this  way,  it  is  easy  to  use  the  resources  oi  more  than  one  computer  (assuming  that  you  have 
a  valid  account  on  each  system). 

The  dnect  host-to-host  connection  just  described  is  called  a  TELNET  connection.  TELNET  is  a  valuable 
network  tool  because  it  lets  you  use  programs  and  utilities  (»i  remote  machines  that  may  not  be  available  locally. 
You  may  also  open  a  qiedalized  host-to-host  link  called  a  file  transfer  w  FTP  connection  (FTP  is  the  acronym 
for  Rle  Tkansfer  Protoetd.)  FTP  allows  you  to  copy  or  transfer  files  from  one  host  to  anothm-.  Sections  S.1.2 
and  S.1.3  provide  qiecific  details  6^  executing  hok-to-host  FTP  and  TELNET  connections. 


3.2  TAC  Access 


NGfitary  users  can  access  the  DDN  by  connecting  to  a  Terminal  Access  Controller,  or  TAC,  and  then  logging 
into  the  TAC  by  entering  a  valid  Userid  and  Access  Code  (password).  A  TAC  allows  a  wide  variety  of 
terminals  to  communicate  directly  with  any  host  on  the  netw(»k  without  going  through  an  intervening  host. 
There  are  three  types  of  TAC-to-terminal  connection 


1.  When  a  wire  or  ctdile  runs  directly  from  a  terminal  to  a  TAC,  it  is  called  a  hard-wired  or  direct-connect 
lenninaL 

2.  A  terminal  may  also  connect  to  a  TAC  through  a  telqdione  and  modem;  this  is  called  a  dial-up 
connectioa. 

3.  Some  terminals  are  refnred  to  as  dedicated  terminals.  These  terminals  use  a  point-to-point  modem  to 
connect  to  the  network;  they  are  not  considered  "dial-iqr"  terminals. 


After  logging  into  a  TAC,  you  can  reach  a  network  host  by  ^lecifying  its  host  address.  You  may  also  establish 
diis  type  of  connection  on  a  Nfini-TAC  (see  Section  4.2.6). 

[NOTE:  You  must  be  a  registered,  authorized  user  to  obtain  a  TAC  Userid  and  Access  Code. 

See  details  in  Section  4.1.1.] 


33  Grateway  Access 

If  a  compnlcr  is  to  a  LAN  or  a  non-DCS^  network,  a  gateway  or  concentrator  manages  communication 

between  the  locd  network  and  the  DIM.  The  gateway  is  iransprrait—- that  is,  you  should  be  unaware  that  it  is 
there.  Some  sftes  do  not  irilow  traffic  to  flow  from  the  DlWf  to  their  internal  network.  In  such  cases,  the 
gateway  exitts  and  is  fimctional,  but  you  must  use  the  gateway  host  itself  to  perform  any  tasks  that  require 
access  to  the  (e.g.,  to  estaUish  a  TELNET  or  FTP  connection  to  a  DDN  host).  Electronic  mail  can  travel 
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over  diK  type  of  gateway  transparently.  Ordinarily,  you  need  no  special  commands  or  syntax  to  communicate 
thfou^  a  gateway.  Figure  2-1  illustrates  a  gateway  connection  Oxm  a  LAN  to  the  DDN,  as  well  as  the  other 
coonectioo  strategies  discussed  in  this  Section. 

[N(3TE:  Because  of  software  limitations,  figures  are  not  visible  in  the  ASCII  format  of  the 
online  vision  of  this  document] 


3.4  A  Word  About  Personal  Computers 

Although  Personal  Compute  (PCs)  can  be  attached  to  the  DDN  in  several  ways  (including  as  hosts),  at  present, 
most  personal  computers  on  the  DDN  are  not  hosts — that  is,  they  have  not  implemented  the  network  protocols 
and  are  not  attached  directly  to  a  PSN.  Functioning  simply  as  terminals,  they  have  no  other  capabilities  so  far  as 
the  network  is  concerned. 

Like  a  terminal,  a  PC  can  be  connected  to  a  host.  Terminal  Access  Controller  (TAC),  or  Mini-TAC  through 
either  a  dedicated  or  a  dial-up  line.  In  these  cases,  the  PC  needs  ^tecial  software  that  allows  it  to  imitate  a 
lerminaL 

Once  you  have  assembled  the  proper  equipment,  you  must  configure  the  software  for  your  particular  system. 

You  (rfkm  need  to  set  the  fidlowing  parameters: 

qieed  The  baud  rale  (in  bits  per  secrmd)  at  which  data  is  sent  and  received;  usually  1200 

baud  if  your  connection  is  throuj^  a  dial-up  modem.  However,  9600  baud  dial-up 
service  is  currently  being  introduced.  For  direct  lines,  check  with  your  Node  Site 
Coordinator. 

data  bits  UsuaUy  set  at  8  (or  7  when  accessing  the  network  via  a  TAC) 

stop  bits  UsuaUy  set  at  1 

parity  UsuaUy  set  to  "even"  or  "none” 

If  these  settmgs  do  not  work,  ask  local  user  iqaesentatives  or  host  personnd  what  your  system  requires. 

Coosidt  te  documentttion  that  accompanies  your  posonal  computer,  software,  and/or  modem  for  detaUs  of 
operation. 

Local  ale  representatives  should  be  the  first  point  of  contact  few  PC-related  iwoblems.  If  you  have  no  such 
representative,  contact  the  Hba  Administrator  for  the  hoa  you  are  trying  to  reach.  The  NIC  may  also  be  able  to 
h^  with  some  of  the  problems  you  encounter.  Check  to  see  if  your  organization  has  a  PC  users  gro«q),  as  other 
users  can  be  a  valuaUe  source  advice.  In  addition,  the  network  has  several  general  and  machine-q)ecific  PC 
iimuwMt  groiqM  that  am  provide  a  broad  range  of  information  and  answers.  (See  Appendix  A  for  inftwmation  on 
these  groups,  snd  see  Section  4.2.5  for  a  discussion  of  transferring  files  through  a  TAC  ot  Mini-TAC  to  a  PC.) 
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SECTION  4.  DDN  TAC  ACCESS 


TUs  sectioo  pnwides  informadoa  about  TAC  cards  and  explains  how  to  use  a  TAC  or  Mini-TAC  to  log  on  to 
tbe  network  and  set  it  to  transfer  files.  It  also  provides  infomuuion  on  q)ecial  settings  that  may  be  required  to 
aOow  the  TAC/MSni-TAC  to  transfer  files  and  function  more  efficiently. 


4.1  TAC  Card  Information 

The  firilowing  paragnq)hs  explain  how  users  are  registered  to  receive  TAC  cards,  what  items  are  printed  on  a 
TAC  card,  and  how  to  get  a  TAC  Users’  Guide. 


4.1.1  TAC  User  Registration 

If  you  are  miaHe  to  connect  directly  to  your  host  computer,  you  will  be  issued  a  TAC  Access  Card  that  allows 
you  to  access  your  host  via  a  TAC  or  Mini-TAC.  Whether  you  are  located  hundreds  or  thousands  of  miles  away 
from  Ae  host  or  right  next  door,  you  will  need  a  TAC  card  only  if  you  cannot  access  your  host  directly. 

TAC  access  requires  official  authorizatioii  from  a  MILNET  Host  Administratm.  as  well  as  the  assignment  of  a 
uniqne  TAC  Userid  and  Access  Code  (Password). 

After  obtanung  official  authorization,  the  NIC  issues  each  MILNET  TAC  user  a  TAC  Access  Card  containing  a 
lAcaid  and  Access  Code.  The  NIC  camot  issue  a  card  until  it  has  received  iqtptoval  from  the  Host 
Adnriniatiator  for  the  user’s  pthnary  MILNET  host  (or  fnrni  the  Host  Administrator  of  the  gateway  to  which  his 
primanr  host  is  attached). 

[NOTE:  If  you  need  a  TAC  card  for  a  limited  time,  your  Host  Administrator  can  probably 
isaue  you  a  TAC  guest  card,  which  is  good  for  iq)  to  three  months.  If  you  need  such 
temponry  access,  contact  your  Host  Administtator.] 

R^iardless  of  whether  you  normally  use  a  direa  connection  to  your  host,  you  may  need  a  TAC  Access  Card  if 
you  tmvd  extensively.  Bectuse  TACs  and  Mini-TACs  are  located  all  over  the  w^d,  an  Access  Card  allows 
you  to  log  m  when  you  are  out  town  without  incurring  long  distance  phone  charges. 

The  TAC  Access  Cvd  contains  a  Usnid  and  Access  Code.  This  Userid  and  Access  Code  are  to  be  used  only  by 
die  penon  to  whom  die  card  is  issued.  While  there  is  a  strict  ptdicy  of  limiting  TAC  cards  to  one  per  person, 
you  nuqr  have  many  DTOf  host  accounts,  and  one  TAC  card  can  be  used  to  access  any  of  these  accounts. 
You  do  not  need  a  TAC  card  from  each  host  on  winch  you  have  an  account  Any  TAC  card  works  on  all 
TACs. 

Note  dHt  TAC  cards  are  issued  to  asm  by  mdividual  name  only.  They  are  not  issued  to  groiqis  of  users  or 
eadie  offioes.  TUs  ptdicy  apidies  even  vdien  many  users  share  a  single  login  account  Not  only  is  this  a 
aeear^  measure,  but  h  hlso  prevents  multqile  users  from  losing  DDN  access  when  a  single  card  is  invalidated. 

If  yon  am  using  a  card  issued  to  another  DDN  user,  please  notify  the  person  listed  as  the  CONTACT  on  the 
card.  TUsisprolMMy  your  Host  Administrator.  Inform  him/her  that  you  are  using  an  account  on  his/her  host 
and  that  yon  wish  to  have  a  TAC  card  issued  m  your  own  name. 
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Al.1.1  Uaen  CoaceBtraton 

DIX4  Mnagraient  Bulletin  76  [S]  states  that  only  administrators  of  hosts  that  are  directly  connected  to  the 
MILNET  can  authorize  TAC  or  Mini-TAC  Access  Cards  for  their  users.  Administrators  of  hosts  that  are  behind 
copccatratocs  or  gateways  cannot  directly  authorize  their  users  for  TAC  access  unless  they  are  del^ated  that 
authorhy  by  their  gateway  Itot  Administrator.  Such  administrators  will  need  either  to  tiiutsfer  jurisdiction  over 
their  usen  to  dieir  gateway  administrator  or  to  obtain  authority  firom  himAer  to  request  TAC  access  directly.  If 
you  me  a  user  or  Host  Administrator  who  has  questions  about  this  policy,  please  s^  a  message  to 

REGIS'niAR@NICJ>DNA«IIL 


or  call  l-800-36S-roQC  for  assistance. 

If  you  access  the  MILNET  via  a  concentrator/gateway,  the  name  of  that  concentrator,  its  address,  and  its 
administrator  may  appear  on  the  HOST.  NETADMl^S,  and  CCK4TACT  lines  of  your  TAC  card.  You  may 
still  use  your  card  to  access  your  primary  login  account,  even  if  it  is  on  another  ho^  howevn,  you  must  know 
the  network  address  of  your  primary  ho^  The  adminisiraior  of  your  primary  host  can  tell  you  its  address.  You 
must  know  this  address  when  you  log  into  a  TAC  and  when  you  request  help  with  a  TAC  login  problem. 


4.U  TAC  Card  Example 

Hgnre  4-1  is  a  aani|de  of  the  left  portion  at  a  DIM  TAC  Access  Card.  To  help  you  understand  the  information 
on  the  TAC  card,  we  have  identified  what  each  infocmatioo  item  represents. 


MIINET 

TACAOCCWCAM) 


Uaenn  JD42<3HAB 


AocawooM  saaaoooxj- 


Dm,  JelNi.^ 


oan  2i-Auoei<^ 

IXP—a  22-Au948<^ 
CAnoNa  osiiaaa 


ram 

Hoar  oeNEnc4toaTiMVY.Mn. 

ICrMNMeM  20.31.0.73 
OOHrACr  SmiOi,Jack 


J8MfTH9QENEraC-H0eT>IAVYJyilL 

mOM  (703)002-0400  • 

LOOMNAMi  JOOe2-« 


MAaaOK  JD0e2«QENe«C-H06T.NAVY  MIL  - 

A  TAD  UHT  a«Wi  b  ankMi  M  00«B  mm-74 

I TAO  |*M  mMkM  ••  MM  bHk  of  Mi  t 


-Utwb  Uniqui  hbnlHeMen 


>  CoM  AMOebM  wUi  UMMim 


■  Umb  Pul  Nmi> 


•DaliCifdi 
.  Dili  Umt  imM  b*  RMUttmlMd  on 
MiHnI 

>  Numtor  IdMiSirlng  SM  AaoM  C«ri 

wUmi  TUmv  OS  nool 

'on  aNeh  Mi  Cad  b  bMd. 
itorHoa 

ConqMtr 

(tow  il  Hoa  Admfeiblntgr 
MWiUiab  Hoa 
Hoa  AdMnbMtofb  QMbofic 
’Mribw 

AdminbMMb  Convay  ondbr  DSN 

s'siBsio  lausimOT 

'  Ibab  Login  Nani  tar  IM 
•Onrbi 


Flgvc  4-1.  TAC  Ctfd  Example 
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TAC  cards  are  perforated  and  include  instructions  to  "detach  here"  and  "fold  hae,"  allowing  you  to  reduce  the 
size  oi  the  card  so  that  you  may  insert  it  in  a  wallet  or  credit  card  case. 

WARNING!!  Do  not  laminate  your  TAC  Card.  Because  of  NIC  printing  requirements,  blank 
ctBfds  are  enclosed  within  carbon-coated  envelopes.  This  carbon  material  fades  very  quickly 
when  placed  in  plastic  envelt^s  or  when  permanently  laminated.  This  phenomenon  also 
extends  to  the  placement  of  transparent  tape  over  the  print.  If  you  wish  to  preserve  or  darken 
the  infonnation  printed  on  your  card,  we  recommend  that  you  use  a  ballpoint  pen  to  rewrite  it 
just  above  or  below  the  iqqm>[Miate  item. 

The  most  important  information  on  the  right-hand  portion  of  your  TAC  card  is  your  mailing  address.  However, 
the  NIC  includes  its  toll-fitee  User  Assistance  Hotline  number  on  this  section  of  the  card  in  case  you  lose  the  left 
half.  In  addition  to  the  hotline  number,  the  top  of  the  card  contains  a  brief  set  of  user  guidelines.  As  an 
authorized  TAC  or  Mini-TAC  user,  you  are  expected  to  comply  with  these  guidelines.  If  you  fmd  yourself  in 
the  position  of  sharing  a  TAC  Access  Card  with  other  users,  please  notify  your  Host  Administrator  and  request  a 
TAC  card  for  each  individuaL 


4.1,2.1  ConunoD  TAC  Card  Userid/Access-Code  Input  Errors 

Just  bdow  the  guidelines  section  is  a  key  that  shows  how  each  printed  character  appears  on  a  TAC  card.  The 
statcmmt,  "Access  codes  never  contain  a  one,  zero,  *Q*  or  ’Z*"  follows.  Remember  that  these  characters  are 
invalid  only  in  Access  Codes  and  not  in  Userids.  If  you  find  diat  the  TAC  or  Mini-TAC  is  returning  a  "Bad 
Login”  error  message  during  your  first  attempts  to  log  in,  check  to  see  if  you  are  typing  one  of  these  invalid 
characters.  For  example,  if  you’re  tyi^g  a  zero,  try  the  letter  O  (oscar).  If  you’re  typing  a  Q  (quebec),  try  the 
kttei  G  (golf)  mstead.  Use  the  key  to  compare  the  printed  characters.  Be  aware  that  other  character  can  sJso  be 
siinilar.  For  instance,  the  8  (eight)  sometimes  lodes  like  a  B  (toavo),  and  the  S  (sierra)  sometimes  looks  like  a  S 
(five).  TAC  card  Userids  and  Access  Codes  are  not  case-sensitive,  i.e.,  you  can  enter  them  in  either  uiq)ercase 
or  krwercase  letters. 

If  you  har«  any  questions  about  reading  or  using  your  TAC  access  card,  call  the  NIC  for  assistance  at 
1-800-365-DNIC. 


4.13  Obtaining  the  TAC  C/sers’ Gifide 

The  paragtqih  in  fine  print  at  the  bottom  of  your  TAC  card  slots  you  that  further,  more  comprdiensive 
infannation  is  available  to  you.  Upon  written  request,  you  can  ob^  the  TAC  Users’  Guide  from  the  Defense 
Infonnatian  Systems  Agoicy  (DISA).  This  document  is  geared  toward  users  who  are  interested  in  learning  some 
of  die  finer  points  of  TAC  usage. 

To  order  the  TAC  Users’  Guide,  send  a  note  qiecifying  its  tide  and  DCAC  310-P70-74  to  the  following  address: 

Defense  Information  Systems  Agency 
Attn:  Code  BIAR 
701  S.  Courdioose  Road 
Arlington,  VA  22204-2199 
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AJl  TAC  Login  Procedures 

This  secbon  discusses  how  to  use  a  TAC  ot  Mini-TAC  to  log  in  to  the  DDN.  It  also  describes  how  to  connect 
to  a  TAC  or  Mini>TAC,  lists  some  common  TAC/Mini-TAC  error  messages,  and  presents  information  about 
transfeiring  files  through  a  TAC  to  a  PC. 


4^.1  Connecting  to  a  TAC  or  Mini>TAC 

The  following  paagnqphs  explain  the  various  ways  in  which  you  can  connect  to  a  TAC  or  a  Mini-TAC. 


A2.1.1  Dfad-apTACs 

To  connect  to  a  TAC/Mini-TAC  using  the  telephone  system,  follow  the  general  procedures  described  here. 
Because  the  exact  ^qis  required  to  dial  the  TAC/Mini-TAC  depend  on  your  loc^  hardware  setup,  check  with 
local  site  rqvesentatives  for  details. 

You  may  obtain  the  number  of  the  nearest  TAC/hfini-TAC  directly  from  the  netwcak  by  using  the  TACNEWS 
service  (see  Sectioo  6.3.3)  or  by  calling  the  NIC  at  1-800-36S-DNIC.  You  can  look  up  the  phone  number  of  a 
qtedfic  TAC/Mmi-TAC  via  the  NIC  WHOIS  service  (see  Section  6.3.1).  In  addition,  many  TAC/Mini-TAC 
phone  numbers  are  listed  on  the  back  of  your  TAC  Access  Card. 


4JLU  Usiag  a  Termiiial  with  an  Acoustic  Coupler 

To  use  m  acoustic  coupler,  first  dial  the  TAC/Mini-TAC  number  on  a  telephone  and  listen  for  the  dial  tone. 
When  you  hear  the  tone,  put  the  tdephone  handset  into  the  indicated  position  on  the  coupler  cuffs. 


A2.1J  Usiag  a  Dial-up  Modem 

A  dial-iq)  modem  will  be  wired  to  your  tdqthone  and  to  your  terminal.  (Consult  the  instructions  that  come  with 
the  modm  to  attach  it  to  your  terminal  and  set  it  properly.)  Begin  by  dialling  the  TAC/Mini-TAC  number  on 
the  telqthooe.  Then,  wait  for  the  tone,  switch  the  modem  from  "vdce”  to  "data,”  and  set  the  handset  back  on 
die  telqihone  cradle.  Note  thm  die  qieed  of  the  terminal  must  match  the  qieed  of  the  modem.  Also  note  that 
some  modems  are  "smart" — dua  is,  you  will  not  have  to  use  the  telei^ione  to  dial  the  number.  Instead,  you  will 
type  some  instructions  to  your  terminal,  such  as  "DIALSSS1212”  or  ”ATDT9,18003682227.”  The  modem  will 
then  dial  the  ntunber  as  instructed  and  make  the  connection  for  you.  See  your  modem  instruction  manual  for 
exact  details. 


4J.L4  Using  a  PC  and  Communications  Software 

To  access  a  TAC/Kfini-TAC,  you  can  use  one  of  the  popular  communications  sctftwaie  packages  such  as 
Procomm^  or  die  Xmodem  protocol.  These  programs  often  enable  the  PC  to  dial  the  TAC/Mini-TAC,  tqten  the 
host  coimectioa,  and  atur  your  Userid  and  Acxess  Code  automatically.  If  you  use  such  a  package,  be  sure  you 
know  bow  to  dial  the  TAC/Mini-TAC  by  hand  in  case  there  are  problems  with  the  script  or  the  equipment  It  is 
also  osdul  to  know  the  address  of  the  host  you  connect  to  and  how  to  alter  the  script  when  changes  are  made  to 
die  network.  Rnally,  fix’  security  reasons,  you  should  enter  your  Userid  and  Access  Code  manually  when 
loggiiv  ^  lather  thn  including  this  information  within  the  access  scr^ 
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4,2JJ  Hwd-Wircd  TACs 

If  you  to  connect  to  a  host  via  a  hard-wired  TAC,  you  will  need  to  consult  a  local  user  representative  or 
Node  She  Coonfinator  to  learn  the  procedure  for  getting  to  the  TAC/Mini-TAC.  The  procedure  will  vary 
dqieading  iqxxi  what  equipment  is  used  and  how  it  is  configured  at  your  location. 


4,2,2  TAC  Login 

After  you  have  successfully  connected  to  a  TAC/Mini-TAC,  you  must  supply  a  "wake-up”  character  to  alert  the 
TAC  to  your  presence.  Do  this  by  holding  down  the  <Control>  key  and  typing  the  letter  Q  on  your  keyboard 
(X2)*  The  TAC/hfini-TAC  should  respond  with  a  banrter — often  a  message  from  the  MILNET  Monitoring 
Cbnier. 

Once  the  TAC  banner  is  displayed  on  your  screen,  you  can  begin  the  inocess  of  logging  into  the  TAC/Mini-TAC 
and  connectirig  to  a  remote  host 

Ftdlowing  is  a  sample  scenario  showing  how  to  log  in  to  a  TAC/Mini-TAC.  For  more  detailed  instructions  on 
using  a  TAC/Mini-TAC  and  setting  tnminal  parameters,  consult  the  TAC  Users’  Guide  [1]. 
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When  you  enter  your  TAC  Userid  and  Access  Code,  remember  the  following: 

•  <Retion>  terminates  each  input  line  and  causes  the  next  prompt  to  appear. 

It  doesn’t  matter  whetho'  you  type  your  TAC  Userid  and  Access  Code  in  uppercase  or  lowercase 
letters. 

•  Fdr  security  reasons,  your  Access  Code  input  is  not  echoed  or  it  is  obscured  firom  view  with 
strikeover  characters. 

If  you  make  a  mistake,  try  using  the  backspace  key  (^H)  to  delete  a  single  character.  Use  ^U  to 
delete  an  entire  line.  Although  these  commands  do  not  wodc  on  every  keyboard,  they  often  do. 

•  If  you  make  a  mistake  while  entering  either  your  TAC  Userid  w  Access  Code,  type  NT  to  abot  the 
login  ixocess  and  return  to  the  TAC  conunand  mo<te.  Then  try  again. 

Sometimes  the  TAC/Mini-TAC  is  unable  to  reach  the  requested  host  address.  To  tell  the 
TAC/Mini-TAC  to  stop  making  ctMinecdon  attempts,  issue  a  close  command: 


8c  <Ratum> 
Closed. 


As  kxig  as  you  have  an  (^n  connection  to  a  host,  you  remain  logged  in  to  the  TAC/Mini-TAC.  If 
you  close  the  omnection  to  the  host  or  the  connection  is  shut  down  for  any  reason,  you  are  given 
ten  minutes  to  open  anothm’  connection  with  no  further  login  to  the  TAC/l^ni-TAC.  If  you  do  not 
c^ten  another  connection  within  ten  minutes,  the  TAC  attempts  to  hang  up  your  connection  and 
automatically  log  you  out  To  qpen  another  connection,  simply  type  the  "open”  command  again  and 
siqpply  another  host  address,  as  in  the  example  below: 


8o  128.1.0.1  <Rnturn> 


4J13  Connnon  TAC  Login  ProUems 

This  section  covets  (»ly  TAC  login  problems.  Problons  qwcific  to  the  Mini-TAC  will  be  covered  in  a  future 
revision  oi  this  docimienL 

The  TAC  issues  an  enot  message  when  it  does  not  receive  the  expected  input  Some  of  the  most  common  error 
messages  are  presented  in  this  section,  akmg  with  suggestions  about  what  to  do  if  you  see  one. 

The  TAC  sends  two  kinds  of  messages.  The  first  deals  with  enots  in  the  TAC  login  process;  the  second  deals 
with  difficulties  in  opening  a  connection  to  the  destination  host. 
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4,2 J.1  TAC  Login  Messages 

You  may  see  one  of  the  fcdlowing  error  messages  if  you  have  problems  logging  in  to  a  TAC.  Each  message  is 
acconqMUiied  by  a  brief  explanation  of  its  cause  and  suggestions  for  further  action. 

BAD  LOGIN 

This  message  means  that  the  combination  of  Userid  and  Access  Code  you  entered  is  invalid.  Examine 
your  TAC  Access  Card  carefully  to  be  sure  you  are  typing  the  correct  characters  and  that  you  are  not 
using  any  of  the  characters  that  are  invalid  in  tm  Access  Code.  Note  that  Access  Codes  never  contain  a 
zero  (0),  a  one  (1),  a  Q  (qudtec),  or  a  Z  (zulu),  since  each  of  these  characters  may  easily  be  mistaken 
for  another.  If  your  Access  Code  appears  to  contain  one  of  these  characters,  it  may  be  the  lett^  O 
(oscar),  the  letter  L  (lima),  the  lettar  G  (golf),  or  the  number  2  (two). 

This  message  is  also  di^layed  if  you  are  using  an  expired  or  invalid  TAC  card.  If  you  are  sure  you  are 
typing  correctly  and  suspect  you  are  using  a  bad  card,  contact  the  NIC  at  1-800-36S-DN1C,  and  they  can 
determine  the  validity  of  your  card. 


BAD 

This  message  means  you  typed  a  siring  that  is  not  a  valid  TAC  command,  and  the  TAC  does  not 
understand  your  input  EiAo*  you  typed  something  inoxrectly  or  there  was  some  interference  on  your 
connection.  Frequently,  simply  iqteating  the  command  corrects  the  problem.  However,  if  repeating 
your  input  causes  another  erra'  ntessage,  check  to  make  sure  that  you  understand  the  command  you 
meant  to  type  and  that  yotv  input  is  in  an  acce^.acie  format. 


NUM 

This  message  means  tha*  the  TAC  was  expecting  you  to  type  a  number,  but  you  typed  some  other 
character.  The  message  is  displayed  if  you  type  Jie  letter  O  (oscar)  as  part  of  the  address  of  the  host 
you  are  trying  to  connect  to,  or  if  you  omit  the  numoic  host  address  aha  typing  @o  (for  open).  Make 
sure  that  you  are  not  typing  letters  in  {daces  you  should  be  typing  numbers;  this  will  probably  cwrect 
the  problem. 


WAIT 

The  TAC  displays  this  message  while  it  is  attempting  to  validate  your  Userid  and  Access  Code. 


NO  CARRIER 

This  message  comes  from  your  PC  or  modem.  If  this  message  is  displayed  on  your  initial  attempt  to 
dial  the  TAC/Nfini-TAC,  it  means  that  the  TAC/Mini-TAC  did  not  answo'  the  phone.  This  could  be 
because  of  a  power  failure  a  other  emergency  at  the  site  where  the  TAC/Mini-TAC  is  located,  or  it 
could  be  the  result  (rf  a  mis-dialed  telephone  number.  Try  calling  the  number  with  a  telqrhone  that  is 
not  connected  to  your  terminal  and  see  if  your  get  a  busy  signal  ot  other  reccnding  from  the  telephone 
compoiy. 

If  this  message  appears  after  you  have  logged  in  and  while  you  are  wwking  on  the  host,  it  means  that 
something  happmed  to  discoiinect  your  modem  from  the  TAC/Mini-TAC.  Try  dialing  the  TAC/Mini- 
TAC  again.  If  the  jKoblem  persists,  contact  your  site  systems  rqnesentative  to  check  your  modem,  or 
call  the  Monitwing  Center  for  your  area  to  chedt  the  TAC/Mini-TAC. 
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4232  Host  Cmraection  Errors 

Ifost  connection  error  messages  are  sent  when  you  have  successfully  logged  in  to  the  TAC  and  while  the  TAC  is 
trying  to  connect  to  the  host  you  q)ecified.  You  know  that  you  have  successfully  logged  in  to  the  TAC  when 
you  see  the  "Login  OK,  TCP  trying..."  message. 

DESTINATION  HOST  DEAD 

This  message  means  that  the  remote  host  is  physically  powered  off  or  the  cable  to  the  netwok  has  been 
removed.  The  host  is  "down."  Since  host  down-times  are  ntxmally  relatively  short,  wait  a  while  and 
try  to  log  in  again.  If  the  host  remains  unavailable,  call  the  Host  Administrate  fe  the  destination  host 
and  ask  when  the  system  will  be  available  again.  If  you  do  not  know  the  Host  Administrator’s  phone 
number,  the  NIC  can  {vovide  it  or  the  name  and  number  of  the  coedinator  of  the  network  to  which  the 
host  is  attached.  This  infemation  can  also  be  found  by  querying  the  NIC’s  WHOIS  database. 


DESTINATION  HOST  UNREACHABLE 
DESTINATION  NET  UNREACHABLE 
HOST  NOT  RESPONDING 

Several  network  conditions  can  cause  these  messages.  They  may  be  di^layed  if  the  host  or  its  PSN  is 
down  or  if  a  gateway  between  the  TAC  and  the  host  is  dovra.  Also,  check  to  ensure  that  you  q)ecifled 
the  correct  host  address.  Typing  a  nonexistent  networir  address  will  cause  such  a  message  to  be 
generated.  If  the  conditimi  persists,  call  the  NIC  for  assistance. 


4J,A  Changing  the  TAC  hitercept  Character 

The  "@"  sign  is  die  defoult  TAC  intocept  character.  The  intercept  character  is  the  chaiacto-  that  signals  the 
TAC  to  interpret  any  character(s)  that  follow  immediately  as  TAC  commands  rather  than  passing  them  through 
to  the  network 

However,  once  you  have  coraiected  to  your  host,  you  may  want  to  send  an  @  directly  through  to  the 
network — for  example,  when  you  type  a  DDN  mail  address.  To  make  the  TAC  pass  the  @  on  to  the  host  rather 
than  intercqittng  it,  you  must  type  @  twice — i.e.,  When  you  do  this,  the  TAC  intercqits  the  first 
transmits  the  second  "@"  to  the  host,  and  echoes  that  tme  back  to  you.  You  will  see  @@@  on  your  screen. 
Ronember,  when  you  want  to  type  an  "@"  fa:  anything  other  than  a  TAC  command,  you  must  type  it  twice. 

For  examine,  to  send  a  message  to  ausei@milhost,  you  would  have  to  type 


au8«r  9  gmilhost 


and  cm  your  screen  you  would  see 


ausnr 8  8  toilhos t 


To  change  the  TAC  intercept  character,  you  must  type  @I  (for  intercept)  followed  by  the  decimal  value  of  the 
ASCn  code  oi  the  character  you  wish  to  use  in  {dace  ttf  the  The  TAC  Users’  Guide  contains  a  list  of  ASCII 
codes.  For  purposes  of  tmtt  file  transfers,  we  recommend  that  you  change  the  intercept  to  a  non-printing 
character,  such  as  a  contnd  character.  For  example,  to  change  the  intercqit  character  to  control-y  (^y),  type  the 
following: 
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81  25  <Rafcuxn> 


(Be  sure  to  insert  a  space  between  the  @i  and  the  ASCII  code  number.)  After  you  change  the  inteicq>t 
chwacter,  you  must  use  the  new  character  for  all  subsequent  TAC  commands.  To  return  to  the  default  TAC 
intercqa  character  (the  sign)  after  changing  it  to  ^y.  type  the  following: 


*yi  •  <Itaturn> 


where  "i  e"  stands  for  intercept  escape. 


4JS,5  Using  a  TAC  for  File  Transfer 

This  section  presents  several  TAC  command  procedures  that  may  facilitate  file  transfers  through  a  TAC.  The 
procedures  covoed  hoe  are 

Changing  the  TAC  intocqK  character. 

Setting  flow  ccmtrol  on  the  TAC, 

Putting  the  TAC  into  binary  mode. 


42J.1  ChaiqiiBg  the  Intercept  Character 

For  executor  file  transfers,  you  may  want  to  change  the  TAC  intercept  character  to  one  that  your  file  transfer 
program  does  not  use.  For  example,  the  Komit  file  transfer  program  uses  the  (discussed  in  a  subsequent 
sectioo).  To  diange  die  intercqit  character,  fcdlow  the  directions  in  Section  4.2.4  above. 


4JLS,2  Scttfaig  Flow  Control  on  the  TAC 

Setting  flow  control  on  the  TAC  ensures  that  data  will  not  be  transfored  at  a  rate  that  causes  die  TAC  buffers  to 
overflow.  The  example  bdow  assumes  that  you  have  changed  the  TAC  intercept  chaiacta  to  ^y.  (The  ^y 
characters  are  diown  in  the  exanqdes,  but  they  will  not  display  on  your  screen  as  you  type  them  on  your 
keyboard.) 


c  a  <Rntuxn> 
1  a  <Ratucn> 
o  a  <Ratucn> 


whone 

*Tfd  e  a  s  device  code  ASCII,  which  clears  any  previously  set  flow  control  as  well 
as  any  padding  and  parity.  Flow  control  is  incompatible  with  padding 
and  parity. 

^  i  a  »  flow  control  input  start,  which  enables  flow  control  so  that  the  terminal 
sending  data  will  not  send  it  faster  than  the  TAC  can  handle  it 
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^  o  •  =  flow  control  output  start,  which  disables  flow  control  from  the  TAC  to 

the  terminal. 


PBttiiig  the  TAC  io  Binary  Mode 

To  ttansfe  Innaiy  files  over  the  network,  you  must  first  put  the  TAC  into  binary  mode.  Doing  so  disables  the 
TAC  oitercqN  character.  You  must  disable  the  intercept  character  because  if  the  TAC  receives  what  it  considers 
to  be  an  intetcqrt  charactm’— even  though  the  character  is  embedded  in  a  file — ^it  intorupts  the  transfer  process 
rad  tries  to  interprtt  whatever  follows  the  intercept  as  a  command. 

To  pm  the  TAC  in  binary  mode,  first  opra  a  connection  to  your  host  After  establishing  the  host  connection,  put 
the  TAC  in  binary  mode  with  the  commands  shown  below.  (Hm  again,  the  example  assumes  you  have  changed 
the  inteicqit  charratn^  to  ^y.)  The  commands  most  be  typed  in  the  mdo*  shown,  because  if  you  start  binary 
input  before  you  mitiate  binary  ouQmt  the  TAC  will  ignore  the  ”^yb  o  s  command"  and  treat  it  simi^y  as  a 
character  string  to  trrasmit  ovot  the  netwtnk. 


where 


*Tlto  o  8  <Itntuxn> 
^3^  1  8  <Itetuxxr> 


0  8  =  binary  ouQNit  start  which  enables  8-bit  binary  output  mode  from  the 

TAC. 

Ayb  i  8  *  binary  input  start  which  enables  8-bit  binary  input  mode  to  the  TAC. 

Logging  out  of  your  host  teUims  the  TAC  to  non-binary  mo^,  re-enaUing  local  control  with  @  commands. 
This  is  the  only  way  to  reset  die  TAC  from  binary  to  non-binary  mode  (shmt  of  hanging  up  or  disconnecting 
from  the  TAC  itsdf). 


4^  A  Brief  Word  About  Mini-TACs 

lAni-TACS  are  new  rad  improved  DIW  access  controUeis  similar  to  the  TACs  currently  in  use.  As  with  the 
original  TACs,  MBni-TACs  provide  DDN  access  to  network  usns  who  are  geogr^ihically  distant  from  their  host 
computers.  When  a  asm  dials  a  local  or  toU-free  phone  number  and  types  the  required  series  of  commands,  it 
opens  a  long-distance  connection  to  the  user’s  host  computer. 

TACs  siqpport  igi  to  63  asyndaonous  user  ports.  The  smaller,  more  compact  Mini-TAC  can  handle  only  16 
asyndnonous  lermmal  connections,  but  it  has  other  amiabilities  (i.e.,  synchronous  terminals.  HFEP,  etc.).  Both 
TACs  and  hfini-TACs  allow  normally  incompatible  terminals  and  hosts  to  communicate  with  one  anotha  using 
the  DIS4  as  die  go-between.  While  both  types  aS  access  controllers  serve  similar  rdes.  the  Mini-TACs  ixovide 
more  advanced  operational  and  security  features. 

Like  a  TAC,  the  h&ii-TAC  returns  error  messages  to  its  users  if  it  cannot  understand  a  command.  Currently, 
from  a  user  standpoint,  the  Mini-TACs  and  the  TACs  are  essentially  the  same.  If  you  notice  any  difidence  in 
behavior  between  TACs  and  Mini-TACs  and  you  need  assistance,  the  MILNET  Monitoring  Center  or  the 
NIC.  At  ptearat,  some  TAC  commands  can  te  abbreviated  to  one  character.  However,  in  the  future,  Mini-TAC 
conanands  im^  need  to  be  a  least  two  characters  long  to  oisure  that  they  are  differentiated  firom  otha 
commands  starting  with  die  same  letters. 
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SECTIONS.  NETWORK  USE 


A  computer  attached  to  the  DDN  can  reach  a  large  community  of  users  and  access  a  wide  variety  of  software. 
Research  uxds,  documents,  files,  and  mailing  lists  are  all  readily  accessible  through  the  DDN.  lliis  section 
describes  the  procedures  fw  using  these  netw<^  tools,  three  of  which  are  major  networic  services:  electronic 
mail,  file  transfer  (FTP),  and  remote  login  (TELNET).  These  services  are  integral  to  the  DDN  protocols  and  are 
offered  by  all  hosts  that  have  implemented  the  full  set  of  networir  protocols. 

Although  the  functionality  ci  the  services  discussed  here  is  the  same  on  every  host,  what  the  user  sees  may  diffa* 
fiom  host  to  host  because  software  is  often  customized  to  suit  the  host  operating  system.  For  this  reason,  it  is 
important  to  read  local  online  and  hard-a^y  documentation  and  to  consult  miline  help  files  fOT  q)ecific  details 
on  using  these  services  on  your  host  Check  with  your  local  Host  Administrator  or  site  systems  representative  if 
you  need  mote  infomuttion.  The  sections  below  provide  genoic  instructions  for  using  electronic  mail,  FTP,  and 
TELNET. 


5.1  Electronic  Mail 

The  DDN  capaUlity  diat  is  used  more  often  than  any  othCT  is  electronic  mail.  Electronic  mail  lets  usos  s^d 
messages  to  one  another  over  the  network.  System  (Hograms  accqH  and  store  mail  messages  from  users  on 
other  hosts  that  are  directed  to  local  users.  These  programs  automatically  recognize  the  incoming  traffic  as 
electronic  mail,  translate  it  to  a  format  compatible  with  the  receiving  mail  program,  and  direct  the  messages  to 
die  correct  recq^ts.  Most  users  have  an  online  mail  file  where  all  messages  addressed  to  them  are  stored. 

You  can  print,  read,  or  delete  your  mail  using  the  local  mail  program.  However,  you  should  not  edit  or  alter  the 
structure  of  your  mail  file  excqK  through  a  mail  {HOgram,  as  each  message  has  unique  characteristics  that 
identify  it  as  mail,  such  as  a  header,  a  character  count,  and  a  time  stamp.  Editing  the  mail  file  direcdy  may  alter 
these  charactnistics  so  that  the  mail  program  no  longer  recognizes  the  data  as  mail. 

Ifost  computers  usually  provide  one  w  mcHe  programs  fw  reading  and  sending  mail.  Most  mail  programs 
provide  you  with  the  foQowing  capabilities: 

Reading  messages 

All  mail  programs  have  a  command  that  allows  you  to  read  messages  received  over  the  networit. 
Mail  programs  normally  offo'  options  selecting  aixl  displaying  specific  messages  from  those 
received  and  stored  in  your  mailbox. 


Printing,  ddeting,  or  moving  messages 

With  your  local  mail  program,  you  can  print  your  messages  (if  a  printer  is  availaUe),  move  them 
iruo  odm  (editaUe)  fifes,  or  delete  them.  It  is  important  that  you  learn  how  to  delete  or  move 
messages  after  reading  diem;  otherwise,  your  mail  file  may  overflow  and  prevrot  additional  mail 
from  being  ddivoed. 
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Sendiiig  messages 

You  cmi  send  messages  to  otho’  users  on  your  own  host  or  to  anyone  on  the  network  that  has  a 
mail  service.  No  passwords  are  required  to  send  mail,  but  you  must  know  the  network  mailbox,  or 
address,  the  parson  to  whom  you  are  sending  mail.  Network  mailboxes  usually  take  the  form 

USBRNMIBgBOSTIIMfB .  DOMAIN 

e.g.,  SMITH@NICJ)DN.MIL. 

Midi  that  is  transmitted  over  the  Dro4  normally  requires  a  netwcxk  address  made  up  of  a  username  and  a 
hostname.  Occaskmally,  you  can  omit  the  ho^name.  Fbr  example,  if  you  are  sending  a  message  to  a  user  on 
die  same  host  as  the  one  you  are  using  (your  local  host),  you  ne^  not  iiKlude  the  hosmame.  This  is  similar  to 
sendmg  an  interoffice  memo,  which  rarely  needs  a  fiill  name  and  address  to  reach  its  destination.  On  the  other 
hand,  a  message  sent  to  "John  Smith,  U.S.A"  has  little  chance  of  being  delivered  without  more  infwmation.  The 
same  is  true  (tf  electronic  messages  without  a  valid  address.  Any  message  with  an  incomplete  or  inoHiect 
address  is  returned  to  the  sender  with  an  error  message.  If  a  maU  message  is  undeliverable  due  to  network  <x 
machine  problems,  most  mail  programs  try  to  resend  it  several  times  before  returning  it  to  the  sendo'. 

hbny  mail  programs  allow  you  to  use  a  local  text  edittH*  to  revise  or  correct  the  text  of  the  message  you  are 
prqmring.  The  mail  programs  diemselves  usually  have  simple  editing  features  that  allow  you  to  delete  a 
chincter,  word,  or  line,  or  to  make  simide  corrections.  An  entire  file  may  be  sent  as  the  text  of  a  message, 
assuming  die  file  is  not  too  large.  Many  mailers  outside  the  DDN  truncate  or  discard  messages  that  are  longer 
than  SOjOOO  characters  in  size,  envelope  and  heado*  data  included.  It  is  usually  safer  to  limit  the  size  of  your 
messages  to  ensure  rdiaUe  delivoy. 

Following  are  examides  of  some  typical  procedures  for  sending  and  reading  mail  and  for  getting  help  within  a 
network  nail  program.  These  are  goieral  scenarios;  your  host  may  run  a  different  program  ot  implementation 
ten  the  ones  showtu  Oidy  the  bare  essentials  for  using  these  mail  programs  are  included  here.  We  urge  you  to 
read  te  mairaals  for  your  mail  system  and  to  explore  die  online  help  facilities  to  oipand  your  knowledge  of 
wtet  your  imidementatian  has  to  offer. 

hi  the  exanqdes  that  follow,  note  that  the  prompt  character  consistendy  indicates  what  ^mating  system  oi 
program  you  are  dealmg  with  currendy,  a^  dim  the  prompt  character  changes  as  you  progress  from  one  program 
losnodier. 


[NOTE:  Gxnputer  names,  uso’  names,  electronic  addresses,  and  other  data  used  in  examples 
throughout  this  manual  are  not  intraded  to  represent  currendy  valid  input/output— Le.,  some  of 
the  tea  may  be  "ficticioos"  but  the  format  is  accurate.] 


24 


NIC  60001.  October  1992 


DRAFT 


NETWORK  USE 


S.1.1  UNIX  MAIL  Examples 


ScndiM  MaU  Via  UNIX 

[NOTE:  UNIX  is  case-sensitive.  Most  UNIX  systems  require  that  commands  be  entered  in 
lowercase.] 


I  f'  Iff  ill  -  AAh  . .  t 

Uso^  o^m  so(4  nit^  to  a  w^t-imown 
tnetrlftox  The  petCtoU  sign  {%)  is  a  standard 
VUIX  systm  irmpt,  wfuto  ’’mdi*'  is  the 
eanmtond  thid  htvaies  the  Mdl  pro-am, 

Vser  mm  insert  a  j^toce  b^ore  tyjdng  the 
message  address  an  the  stone  Une. 

Sow  to  9«t  itrCa  <Mtwep> 

The  Mad  program  prompts  message 
todtjeet,  a^  die  ttjom  sappUes  it 

Sow  ^  X  wotwiawa  MPCa  itaiag  tlia 
otet«q»»o  wmU  wtmty? 

VIWMrim  tor  fottr  hmip.  <aMiiuo> 

the  user  types  the  message  text,  ending  mdt 
a  camtd-d(*d)  in  dtefim  ehanteter  tpaee 
of  a  Une. 

D 

UNIX  prompt  rehoms. 

Rcadiag  UNIX  MAIL 


Gcttfaif  Help  for  UNIX  MAIL 
Typiiig 


%auwBan 

coraiects  you  to  the  online  Mail  manual. 

6  balp 

displays  help  for  Mail  users. 

«  ? 

displays  a  list  of  Mail  commands. 
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S.lJt  InfoMail  Examples 

Seadiag  a  Mcsnge  Via  InfoMaiW 

[NOTE:  Since  InfoMidl  runs  under  the  UNIX  (^)erating  system,  and  UNIX  is  case  srasitive, 
InfoMail  commands  must  numally  be  entered  in  lowercase.] 
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Readkig  Mai  witli  InfoMai 


tfser  invokes  the  fi^ohfail  program  at  his 
iocat  system  prompt, 

Tke  itfoUaU  banner  is  ^spiayed,  and 
lOser  is  asked  to  log  in  with  his  maii 
psemtme  and  password.  These  may  be 
esdertd  in  dther  or  lowercase, 
^pter  a  success^  iogm^  IifoMaU  not^s 
userptmaUinhis  'Tnbox^ 


fROHj  COO«B999  /  STMWfSKISf?  OllWt-WS  /  13  Clul 
^  llgCMr  AFtSm.A  /  SCI^PLE  /  14  ^ul 

•>  'ttboctit  <Peikpsxa>  M  the  JtfoMad  prompt,  met  issties  a 

emamand  to  Msjplay  the  next  message, 
anditfoHididoesso. 


User  types  "next'' to  ask  forthe  next 
message. 


User  types  "^qtat^to  esdt  firom  the 
IftfoMedl  program. 


Gcttfeig  Help  for  laftMaO 
Typing 

-->? 


— >dascrlb« 

— >«xa^pl«  <C0Bnndaaaa> 


Prints  a  list  of  all  the  commands  that  can  be  issued  at  this  statte 
of  the  Mail  procedure. 

Lists  possible  input  tot  completing  the  qjecified  command. 

Tells  what  the  speciHed  command  does  and  how  to  use  it. 

Prints  an  example  of  the  specified  command. 
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InfoMiail  manuals  are  availabte  fiom 

BBN  Communications  Division 
10  bfoulton  Street 
Cambridge,  MA  02238 


5J,  File  Transfer  Protocol  (FTP) 

FTP  is  a  proloctd  that  enaUes  you  to  move  a  file  fiom  one  computer  to  another — even  if  the  computers  have 
different  opetatii^  systems  and  file  storage  formats.  You  can  move  data  files,  programs,  text  files,  and/or 
anything  t^  can  be  stored  online. 

To  use  FTP,  you  must  know  the  hostname  or  the  network  address  of  the  remote  host  You  must  also  have  an 
authorized  usennune  and  password  on  the  remote  host  system,  and  you  must  know  die  name  of  the  file  you  want 
to  irarieve  fiom  or  send  to  that  system.  You  can  then  copy  files  eitho-  to  or  fiom  the  remote  system.  Not  every 
file,  however,  can  be  FTP’d.  Only  those  files  that  have  public  "read  access”  (i.e.,  a  file  inotection  designation 
that  perauts  trai»fets)  can  be  transfeired  fiom  one  system  to  another. 

Some  hosts  provide  the  username  "anonymous"  fiv  FTP  file  retrieval  from  their  systems;  this  is  called  the 
"anonymous  login  conventioo."  Any  character  string  is  accepted  as  a  password  for  an  anonymous  login.  An 
anonymous  logm  account  works  only  with  FTP.  It  is  not  tm  account  that  can  be  accessed  fix'  gen^  use. 
Noraaally,  you  cannot  use  the  anonymous  convention  to  send  file<i>to  a  remote  host,  as  this  requires  a  specific 
lo^  axount  on  that  host;  you  m^  only  use  it  to  transfer  files  to  v^xir  local  wt^cqiace  fiom  a  host  on  which 
yon  do  not  have  a  login  account  However,  some  hosts  now  provide  public  directmies  where  you  can  send  files 
as  weO  as  retrieve  than. 

These  are  die  general  stqxt  used  fix*  a  file  transfer  procedure: 

1.  Log  in  to  your  local  host  and  invtke  die  FTP  program. 

2.  Provide  the  hostname  or  network  address  for  the  rnnoie  system. 

3.  When  you  have  successfiilly  established  a  connection  to  the  remote  host,  log  in  with  your 
atdiotfaed  username  and  password  on  that  system. 

4.  Issue  commands  to  send  or  retrieve  files. 

5.  When  you  are  fimdied,  log  off  the  remote  host  and  exit  from  the  FTP  program. 

Dqiending  on  die  FTP  inqdeflaeniatioiis  on  your  host  and  on  the  remote  host,  it  may  be  possible  to  di^lay  a 
diteclory  Hsthtg  die  pul^  files  on  the  remote  host  and  to  request  ranoie  system  status  infixmation. 

As  yon  wiB  see  fiom  the  examfries,  when  you  transfo-  a  file  with  FTP,  messages  regarding  the  status  of  the 
action  you  have  requested  are  diqdayed  throughout  the  process.  The  FTP  server  on  the  remote  host  sends  the 
File  ToMsfer  messages.  These  messages  generally  have  the  following  characteristics: 

Every  FIP  command  generates  at  least  one  reply. 

A  rqdy  oonsisu  of  a  three-digit  retmn  code,  followed  by  a  line  of  text  describing  the 
response. 
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•  If  a  single  line  of  text  accompanies  the  return  code,  a  single  space  separates  the  code  firom 
the  text 

•  If  more  than  one  line  accompanies  the  return  code,  a  hyphen  (-)  sqiarates  the  code  from 
the  text 

During  a  RIe  Transfo'  session,  you  enter  a  command  and  then  wait  for  a  message  indicating  whetho-  the 
command  was  accepted.  Further  system  messages  describe  the  outcome  at  any  transfer  you  may  request 
The  text  that  accompanies  the  FTP  return  codes  may  differ  slightly  from  saver  to  server,  but  the  general 
meaning  die  numeric  codes  remains  constant 

Rognms  based  on  the  FTP  prolocd  vary  a  great  deal  in  implementation  details.  The  examples  provided  hoe 
should  be  taken  only  as  guiddines.  Consult  your  local  system  representatives  fw  assistance  with  the  FTP 
imidementttion  on  your  host 

Before  you  bqpn  a  Rle  Transfer  session,  it  is  best  to  become  familiar  with  the  general  command  sequence. 

An  exanqde  of  mi  FTP  session  conducted  between  two  UNIX  systems  ajpears  on  the  next  page.  In  the  example, 
a  user  carries  out  several  standard  FTP  procedures,  such  as  asking  for  a  directory  listing  of  the  public  files  on 
the  remoie  system  and  then  changing  to  another  directory.  Remember  that  the  commands  to  accomplish  these 
tasks  may  vary  firom  host  to  host,  and  not  all  host  FTP  servers  implement  all  commands. 
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5.2.1  Transferring  a  File  on  a  UNIX  System 

In  the  following  example,  both  hosts  are  running  UNIX. 


f  .aiac.nie.eoai  -<IUat\icn>  V$fr  invtdces  the  FTP  program  at 

'  Ms  iocat  system prongfl,  and  the 

remote  FTP  server  responds  by 
displaying  Us  banner  and  requesting 
a  login,  as  shown  below, 

f»3  FTP  server  IKXC  Version  x.xx  ...  Wed  July  17  16; 20 .*33  EOT)  ready. 
Sane  (£s3.pi«c.nio.copi:l>arl>v> :  snonynous  <itetuxn> 

331  Guest  login  ok,  send  Ident  as  password. 

eoho) 

,  lofln  sdoess  ten&ri.dtiond  apply. 


200  PORT  coannand  auccessful. 

ISO  opening  ASCII  mode  date  connection  for 
file  list . 


etc 


^er  succes^uliy  logging  in  as 
’’anonymous  guest,”  the  user  asks  for 
a  ^rectory  listing  of  public  files  at 
the  FTP  prompt.  FTP  responds, 
prindng  messages  regarding  the 
trmifer. 


2Z6  Transfer  cot^lete. 

4?  l^ytes  received  in  0.02secs  (2.3  Kbytes/ sec) 

^thei 

250  cao  oosmand  successful.  comma 

ttp>lte  <hm»!!axm>  Srecm 

200  PORT  cowaand  successful. 

files  in 

15D  <toening  A$CI1  mode  data  connection  for  file  list. 

_ _ _  _  _  _  _ 


Al  the  FTP  pronpt.  user  issues  a 
command  to  change  to  the  nedtfo 
dUectory,  then  adtsfor  a  listing  of 
files  in  the  new  working  directory 
(nentfo). 


nsfnet. policy : 


l2$''i^^eS' ^ceived  in  0.04.  seconds  (3.1  Kbytes/s) 

^  gat  eifbwt  .policy  ^KetusxC^  Vm  odisftF  a  tranter  offhe 

specified  file  to  Ms  own  file  system. 
Simehedoesnotspecffanmv 
filename,  the  file  retains  the  same 
mmem  the  held  system. 

"  '  '  ' 

'  t2^(^^PCptT  cewand  Successful. 

'' t$0' A6KJIT  swede  data  connection  fot  nsfnet.policy  (2700  bytes) . 
doapietd. .  -  . 

nsj^{#t. policy  tumoteit  nsfnet  .policy 

deceived  iu  0.12  seconds  (23  lObytee/s) 

jfnid  Vm  types  ”^Fio  entfiom  the 

FTPpmpfm.  The  local  system 

,  prompt  is  displayed  again. 


ii^|!!ijij|i|M 


'^%y' 


« •»M>'^-'l5: 1/v' 

WHiPM 


'  •-•  /  /<■ 
r’iW/////A 


YfY/Zf 


'  /j¥TH 
^'f^'ir-: 


5J22  How  to  FTP  a  Directory  Listing 

The  exaniide  that  follows  demonstrates  how  to  retrieve  a  list  of  file  names  from  a  public  directory.  (Not  all 
hosts  provide  this  feature;  check  with  the  online  help  system  or  your  local  user  support  represoitative.)  In  the 
exanq^  die  user  is  logged  on  to  a  host  running  the  UNIX  operating  system.  He  uses  FTP  to  connect  to  the 
host  NICJ>roUifIL,  then  logs  in  under  username  "anonymous"  and  passwod  "guest"  He  enters  the  "dir" 
(diiectary)  command  for  the  directory  "RFC"  to  see  the  names  of  accessible  files.  (Because  the  actual  diiectcMy 
list  is  lo^,  only  the  first  few  files  and  the  last  file  are  shown  in  the  example.) 

After  the  directory  listing  is  di^layed,  the  user  can  copy  a  file  w  files  from  the  remote  host  directory,  but  this 
procettare  is  not  mchided  in  die  example.  He  issues  the  FTP  command  "bye"  to  exit  firom  the  program  and  close 
the  connection  to  the  remote  host,  which  returns  him  to  the  local  host  operating  system. 
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53  Using  TELNET 

Another  valuable  way  to  use  the  netwculc  is  (tffered  by  the  TELNET  utility,  which  allows  you  to  log  in  to  a 
rranoie  host  firom  a  local  host  (assuming  that  you  have  an  authorized  account  on  the  remote  host).  Once  you 
have  e8ttri)lished  a  TELNET  connection  and  logged  into  the  remote  host,  you  can  enter  data,  run  programs,  and 
otbnwise  operate  just  as  though  you  were  logged  in  directly.  Ehuing  a  TELNET  session,  each  transition  to  a 
different  interactive  program  causes  a  shift  to  a  different  command  level.  With  each  level,  the  form  of  the 
prooqtt  varies.  Command  ftmnats  also  vary  with  each  level.  You  can  often  tell  which  system^rogram  you  are 
using  by  the  prompt  symbol.  The  steps  for  running  TELNET,  very  briefly  summarized,  are  as  follows: 

Log  in  to  your  local  host 

Invoke  the  TEU^IET  program  from  that  host 

Identify  by  hostname  or  network  address  the  remote  host  that  you  want  access  to. 

>  When  the  TELNET  connection  is  established,  log  in  to  the  remote  host  with  the  username  and 
passwmd  that  have  been  assigned  to  you  on  that  host 

Pmfonn  whatever  ta.sk.s  you  like  on  the  remote  machine,  being  careful  not  to  violate  any  remote 
operating  system  rules. 

•  Whm  finished  wtaking  on  the  remote  host  type  the  remote  logout  command.  Then  close  the 
TELNET  cormection — ^if  it  is  not  automatically  closed  on  logout 

•  You  are  once  again  (grating  in  your  local  host  system  environment 

TELNET  has  other  advanced  features  too  numerous  to  discuss  here.  Check  you  local  TELNET  user  program  for 
online  documentation,  w  talk  to  your  local  Host  Administrator  or  user  support  rqrresentative  for  more 
infonnation. 
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53.1  Invoking  TELNET  with  the  Hostname  on  the  Command  Line 

In  the  following  example,  a  user  TELNETs  from  a  local  UNIX  host  to  a  remote  SunOS  host.  Once  the 
connection  has  been  established,  the  prompts,  commands,  and  responses  are  those  of  the  Sun  Operating  System 
environment  To  die  usor,  it  appears  as  draugh  he/she  wot  directly  logged  in  to  the  remote  computer. 

After  the  user  is  dcMie  woridng  on  the  remote  host  he  issues  the  remote  system’s  logout  command.  This  logout 
automatically  returns  him  to  the  TELNET  program  on  the  local  host,  closes  the  TELNET  session,  and  returns  the 
local  tolerating  system  i»ompt  (%). 

Note  that  instead  of  invoking  the  TELNET  program  and  then  issuing  an  "open"  command  to  the  remote  host  at  a 
TELNET  prompt,  the  user  supidies  the  remote  hosbiame  directly  on  the  program  invocation  line.  (Not  all 
implanentations  recognize  this  ftvm  of  connection.)  In  addition,  note  that  the  user  would  need  an  authorized 
account  on  the  NIC  host  to  log  in  with  usoname  and  password  as  shown  in  the  example. 
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S3J2  TELNET  Using  Host  Address 

bstead  of  invoking  THUET  and  s;)ecilying  a  hostname  for  the  remote  host,  you  may  specify  the  remote  address 
in  dot  notation  format  Some  hosts  require  the  network  address  to  be  enclosed  in  brackets  if  it  is  supplied  on  the 
command  line.  (Many  TELNET  implementation  prompt  fcu’  a  netwmk  hostname  or  address  if  you  do  not  specify 
one,  and  they  may  allow  you  to  qren  the  connection  after  asking  for  help  or  issuing  other  TELNET  commands.) 
To  establish  a  TELNET  connection  using  a  host  address,  (Hoceed  as  shown  in  the  example  below.  The  example 
presumes  a  user  on  a  UNIX  host  connecting  to  the  NIC’s  SunOS  system  via  TELNET.  After  reaching  the  NIC 
host,  the  usm*  looks  iq)  a  name  with  the  WHOIS  program,  exits  firom  WHOIS,  and  then  closes  the  connection. 
(Note  the  change  finom  UNIX  prompt  symbol  to  the  NIC  i»ompt  and  back  egain.) 


sV 


'r“ 
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SECTION  6.  DDN  NETWORK  INFORMATION  CENTER  (NIC) 


The  DDN  Network  Infonnation  Cento'  (NIC)  is  located  at  the  DDN  Installation  and  Information  Sovices  (DIIS) 
program  office  in  Chantilly,  Virginia.  The  NIC  is  funded  by  the  Defense  Information  Systems  Agency  (DISA), 
Defoise  NetwtKk  Systems  Organization  (DNSO).  The  NIC  is  responsible  for  providing  general  reference 
services  to  Dl^  users  via  telephone,  electronic  mail,  and  U.S.  mail.  The  NIC  also  provides  databases  and 
infonnation  services  of  interest  to  network  users,  including  the  WHOIS  registry  of  network  users  and  other 
networir  entities,  the  NIC/Query  browsing  system,  TACNEWS,  and  the  official  DoD  Host  Name  Sovice.  The 
NIC  maintains  the  RFC  (Request  fw  Commoits)  collection  on-line.  Many  other  online  informational  files  are 
also  available  dirough  the  NIC’s  automatic  mail  service,  SERVICE@NIC.DDN.MIL. 

Among  its  other  duties,  the  NIC 

registers  hosts  and  (ktniains, 

assigns  IP  networic  numbers  and  Autonomous  System  Numbers  (ASNs), 

provides  hostname  translation  tables  and  danain  name  system  s^er  files  to  the  DDN  and  the 

Internet. 

registers  network  users, 

•  issues  MILNET  TAC  Access  Cards. 


6.1  Contacting  the  NIC 

6.1.1  NIC  User  Assistance  Help  Desk 

The  NIC  provides  user  assistance  in  a  number  of  ways.  Our  main  Help  Desk  plKMie  numbers  ate 
I-800-36S-DNIC  (within  the  continental  United  States) 

1-703-802-453S  (outside  the  continental  United  States  and  in  the  Washingtcm,  D.C. 

metropolitan  area) 

1-703-802-8376  FAX  Number 

The  first  number  is  ton  free,  while  the  area  code  703  numbers  are  toU  firee  in  the  Washington  area  only. 

The  NIC  provides  He^  Desk  assistance  to  those  who  experience  {MoUems  with  using  the  network  in  genoal  and 
with  lerminal-to-TAC  use  in  particultr.  Should  you  have  a  security  problem  or  concern,  the  NIC  can  ctxuiect 
you  with  the  Security  Coordination  Centm'.  In  action,  the  NIC  is  happy  to  answer  questimis  about  any  otho- 
service  outlined  in  this  section.  The  NIC  Help  Desk  services  ate  avail^e  from  7  a.m.  to  7  p.m.  (EST/EDT), 
Nfond^  through  Friday. 
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6,12  NIC  Host 

The  NIC  computer’s  hostname  and  netwok  address  are: 

NICDDNAflL 

192.112.36.5 

NIC  onhne  services  are  available  24  hours  a  day,  7  days  a  week. 


6.13  NIC  Online  Cmitacts 

The  NIC  siqtparts  several  online  mailboxes  to  provide  assistance  in  specific  areas.  This  list  is  provided  hoe  for 
easy  reference.  The  following  sections  provide  more  detailed  information  regarding  the  type  of  inquiries  each 
maffiiox  handles. 


1 

Type  of  Inquiry 

Network  Mailbox 

General  User  Assistaice 

NIC@NIC.DDNA1IL 

TAC  and  Ndn-TAC  User  Registratioa 

REGISTRAR@NIC.DDNMIL 

lAgeat  Secorhy  Matters 

NIC-AIiRT@NIC.DDN.MIL 

Host.  Domain,  and  Net  Registration 

HOSTMASTER@NIC.DDNAlIL 

NICXlDNldlL  Computer  Opaadons 

ACTION@NIC.DDN.MIL 

Comments  on  NIC  Publications,  Services 

SUGGESTIONS@NICJ>DNA!IL 

Security  Concerns  and  Questions 

SCC@NIC.DDNJtfnL 

Usage-Sensitive  Billing  Qnestiotis 

BILLING@NICJ)DNAflL 

Automatic  Mail  Service 

SERVICE@NICX)DNJdIL 

Rqnrthig  NTC  Software  Bogs 

BUG-SERVICE@NICJ>DN.MIL 

6.14  NIC  U3;.  Man  Address 

The  NIC’s  current  mailing  address  is 

Network  Information  Center 
14200  Parit  Meadow  Drive,  Suite  200 
Chntmy.  VA  22021-2219 


62  NIC  Services 

b  addhkn  lo  the  user  assistance  Hdp  Desk  described  in  Section  6.1.1,  the  NIC  provides  registration,  billing,  and 
secmity  support  services. 
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6.2.1  Network  and  User  Registration  Services 
The  NIC  roisters  the  fdlowing  netwcxk  entities: 
domains 

IP  network  numbers 
inverse  addressing  data 
Autonomous  System  Numbers  (ASNs) 
hosts 

TACs/Mini-TACs 

gatewi^  and  PSNs 

some  network-related  organizations. 

Registration  oi  MILNET  hosts,  TACs,  gateways,  and  PSNs  is  coordinated  with  the  MILNET  Manage.  If  you 
wish  to  register  an  IP  netwok,  domain,  or  ASN.  contact  die  NIC  Help  Desk  to  intomation  regarding 
procedures.  New  users  sddom  need  to  register  these  entities. 

Each  individual  who  has  TAC  access  to  the  DDN  must  be  registned  in  the  NIC  WHOIS  database.  Host 
Administrators  register  individuals  in  the  database  as  pvt  of  the  jsocess  of  authnizing  TAC  cards  to  them. 
You  win  fmd  it  useful  to  be  r^tered  in  this  database  because  it  smves  as  an  electronic  white  pages  to  DDN 
users.  Non-military  hitonet  Points  of  Contact  are  often  listed  dme  as  wdl. 

To  be  roistered  in  the  NTC  WHOIS  datidnse,  you  wiU  need  to  fiU  out  a  copy  of  the  NIC  registration  template 
^gne  6-1  bdow)  ud  send  it  to  the  network  mailbox  REGISTRAR@NIC.DDN.MIL.  You  may  obtain  this 
tenyhte  via  file  transfer  (FTP)  from  the  NICJ>DN.MIL  machine  (192.1 12.36.S  is  the  numeric  host  address) 
using  the  padmame  netinfo/user-tengplate.txt  or  templates/user-ten^late.txt — wyou 
may  reproduce  the  temfdate  yourself  if  you  adhere  strictly  to  the  frxmat  of  the  online  file.  Detailed  instructions 
for  fiO^  out  the  temptate  ate  induded  in  the  file.  The  format  of  die  template  may  change  as  DISA  dictates, 
but  the  latest  approved  version  win  be  maintained  online  at  the  NIC. 

(bMmctioiis  for  using  FIP  to  copy/retrieve  a  file  are  presented  in  Section  5.12,  or  you  may  consult  your  local 
FIP  docameataiiotL) 


FULL  NAME:  JotMU,  Jumus  J.  Last  name,  first  name,  middle  initial  (no  titles) 

U.S.  MAIL  ADDRESS:  G8I,  lac.  Complete  address,  including  codes,  mail  stt^s,  etc. 

Room  38C,  Sttito  200 
14200  Park  Muudow  Drlvo 
ChUBtllly,  VR  22021 

PIKRIB:  (703)  555-1222  (D8M)  123- A567  Both  commercial  and  DSN,  if  available 
AUTHORIZING  HOST :  NIC  .ODR .MIL  Name  of  host  on  which  you  have  your  primary  account 

PRIMARY  LOGIN  NAME:  jjjonou  Name  you  log  in  with  (username) 

PRIMARY  NETWORK  MAILBOX:  jjoiiou8MlC.DDN.MIL  MoiUfOX  where  your  network  maU  is 

normally  delivered. 

MILNET  TAC  ACCESS?  (y/n)  :  T  For  MILNET  users  only. 

TEIMIMATION  DATE:  10/92  For  Military  users.  MMIYY cf  expected  termination. 

HAin>LE:  Leave  blank  for  new  registrations.  Fill  in  for  updates. 

DELETE?  (y/n) :  N  Use  only  to  delete  an  existing  user  record. 

Figure  6-L  User  Registration  Template 
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6J2J2  Usage-Sensitive  Billing  Service  Desk 

Since  the  advett  ot  iisage*sensitive  billing  on  the  DDN,  the  NIC  has  im>vided  a  service  to  answer  queries 
legncdn^  DDN  Inlling.  This  support  is  provided  primarily  for  POCs  who  receive  the  bills  and  have  questions 
about  dieni.  If  you  have  leceiv^  a  bill  for  DDN  usage  and  have  any  questions  about  it,  you  can  contact  the 
NIC  He^  Desk  as  described  in  Section  6.1.1  or  send  a  message  to  BILLING@NIC.DDN.MIL. 


6,23  Security  Coordination  Center  (SCC) 

The  NK:  is  the  site  of  the  DDN  Security  Coordination  Center  (SCC).  The  SCC  acts  in  conjunction  with  the 
Droi  Network  Security  Officd  (NSO)  to  coordinate  actions  rdated  to  security  incidents  and  netw(»k 
vufaiefabilities.  The  SCC  relays  security-related  information  to  the  Network  Purity  Officer  (NSO)  and  worics 
with  hiin/her  in  handling  network  security  problems.  In  acklition.  die  SCC  issues  DDN  Security  Bulletins  to 
networit  users.  You  can  contact  the  SCC  in  the  fdlowing  ways: 


By  Electronic  Mail: 

SCC@NIC.DDNJdIL 

By  Phone: 

1-800-36S-DNIC  (continental  U.S.) 

1 -703-802-4S3S  (outside  U.S.  and  in  the  D.C.  metro  area) 

By  FAX: 

1-703-802-8376 

By  U3.  Mail: 

Network  Information  Center 

ATTN:  Security  Coordination  Center 

14200  Pwk  Nfoadow  Drive,  Suite  200 

Chantilly.  VA  22021-2219 

Phone  houn  are  fiom  7  a.m.  to  7  pjn..  Eastern  Standard  or  Eastern  Daylight  Time. 


63  NIC  User  Programs 

The  NIC  offitts  aevetri  online  programs  that  DIW  users  may  access  to  retrieve  various  kinds  of  information. 
The  WHOIS,  TACNEWS,  NIQQoery,  and  SERVICE  programs  and  procedures  for  using  them  are  described  in 
ddi  section.  The  NICs  Kermit  server  is  also  described. 


63.1  WHOIS 

WHCXS  is  Ae  NK  program  that  looks  up  mformation  in  an  efectronic  "white  pages”  directory  of  network  users. 
You  can  abo  obtain  information  on  hosts,  gateways,  TACs,  domains,  and  other  network  entities  from  WHOIS. 
WHCXS  Hats  die  name,  networir  nmilbox.  U.S.  mail  address,  lelqihooe  number,  host,  and  TAC  user  status,  whne 
appiicdbie,  for  each  user  roistered  in  its  datrimse.  For  other  entities,  it  provides  such  information  as  domain 
naams,  a  ^  of  domain  serven,  domain  contacts,  network  numbers,  network  contacts,  known  hosts  on  a  given 
aeiiimk  or  gaieway.  Host  Adminiatiators,  and  Node  Site  Coordinators.  Phone  numbers  and  network  mailbox 
aMasses  are  provided  for  all  diooe  vriio  serve  as  Points  of  Conoct  (POCs). 
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(J.U  AcccsriagWHOIS 

Hoe  are  some  instructiofis  for  accessing  the  WHOIS  inogiam  firom  different  pc^ts  of  cnigin: 

From  a  TAC 

•  Type  In. 

After  being  greeted  by  the  TAC  banner,  {Hess  <Return>  and  enter  your  TAC  userid  and  TAC 
Access  Code  when  prompted. 

After  the  NIC  host  banno^  and  greeting  are  di^layed,  type  whols  <Retum>. 

From  a  DDN  Host 

Log  onto  your  local  host  and  TELNET  to  the  NIC,  e.g.. 


t«ln«t  nlc.ddn.Bil  <Raituen> 


or 


tnlnat  192.112.36.5  <RBtuzn> 


After  the  NIC  host  banner  and  greeting  is  di^layed,  type  whois  <B*tuen>. 


Via  Ekctroak  Mai 

Rom  your  login  host,  invoke  the  mail  program  and  send  a  message  to 
SSRVICBimC .  DDN .  MIL 

As  die  subject  of  the  message  (i.e.,  on  the  "Subject:”  line),  entn'  WHOIS  and  the  string  you  want 
die  progiam  to  search  on— e.g.. 

Subject:  irtiois  nle.ddn.ail 

Any  valid  WHOIS  search  iqrat  string  can  be  sent  to  the  SERVICE  program.  However,  if  the 
reqxnse  is  large,  it  will  be  ^lit  into  several  return  messages.  If  it  is  very,  very  large,  it  may 
exceed  the  cqiacity  of  the  servo',  but  most  search  outputs  are  well  within  its  limits. 

You  mqr  dso  ran  the  WHOIS  program  ftom  a  local  host  if  you  have  one  of  the  several  WHOIS  user  programs 
tet  are  awailaUe  for  various  operMbig  systems.  Contact  the  NIC  if  you  are  interested  in  obtaining  such  a 

program. 
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€3.12  Uaii«WHOIS 

To  use  WHOIS,  you  can  sqiply  eidier  the  name  or  the  NIC  "handle”  of  the  person  or  entity  you  are  trying  to 
identify.  The  handle  is  a  unique  identifier  that  the  NIC  assigns  to  each  entity  registered  in  its  database.  Partial 
searches  on  the  first  part  of  a  name  are  also  possible. 

The  WHOIS  program  accessible  on  the  NIC  host  also  recognizes  certain  keywords.  They  tell  WHOIS  to  limit 
its  search  to  certain  kinds  (tf  records — such  as  host  records  only,  ot  domain  records  only.  If  you  search  with  a 
keyword,  you  must  insert  the  keyword  in  the  search  string  bdiwe  the  entity  for  which  you  want  information. 
Such  keywords  can  increase  the  qteed  of  a  search.  Some  of  the  keywords  that  the  NIC  host’s  WHOIS  program 
recognizes  are  as  ftdlows: 


DOM 

for  domain  records 

GA 

for  gateway  records 

HO 

for  host  records 

NET 

for  network  records 

PSN 

for  PSN  records 

TAC 

for  TAC  records. 

WIK>IS  is  not  case  sensitive.  Some  of  the  examines  that  follow  use  keywords  and  some  do  not.  Those  that  do 
use  kqrwords  assume  that  you  have  used  TELNET  to  cminect  to  the  NICDDN.MIL  fm’  access  to  dieir  WHOIS 
program.  For  a  conqdeie  ^  (tf  keywords  and  examples  of  how  to  use  diem,  simjdy  type  help  or  a  question 
mark  (?)  at  the  WIK)IS  prompt,  e.g.. 


Nhois:  hailp  <R«tuzxi> 


WHOIS  leqxmds  to  your  query  m  one  of  three  ways: 

1.  If  WHOIS  finds  a  unique  record  for  the  individual/entity  you  have  identified  as  the  subject  of  the 
search,  it  inunediately  di^lays  the  following  inftamation; 

thename 

die  NIC  handle 

the  organization  (if  apidicaUe) 

the  address 

the  phone  manber 

the  network  mailbox. 

2.  If  WIKHS  fhids  sevmal  records  that  match  the  search  input,  it  di^lays  a  tvirf  list  of  the  matching 
entries  and  aAs  you  to  choose  the  correct  match  by  using  the  handle  (a  unique  character  string  in 
parmnheses  fidlowing  the  name).  A  search  by  handle  produces  the  expanded  output  fw  the 
matching  endQr. 

3.  tf  rm  record  matches  the  seudi  input,  WIK)K  disidays  the  message  "No  match  for  <seaich- 
sttjiq{>,”  where  <seatch-8tring>  is  the  character  sequence  you  entered. 

The  ftAowiQg  eiimapki  iUostrate  some  of  the  WIK>IS  capabilities.  For  mote  information  on  using  WHOIS, 
emmect  to  dm  NIC  horn  and  ^  wholn  hnlp. 
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6J.13  WHOIS  ScarA  Examples 

[NOTE:  The  names,  addresses,  {riione  numbers,  and  otho'  information  shown  in  the  following 
examples  are  meant  to  be  rqxesentative  only;  they  are  not  necessarily  actual  or  accurate  data 
and  should  not  be  used  fw  contacting  any  of  the  entitiesi^icrsons  identified!] 


WHOIS  Search  by  Name 
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WHOIS  Search  by  Partial  Name 

You  any  seuch  using  only  a  partial  name  as  the  search  string  by  entering  the  partial  name  followed  by  one  to 
three  dots  (...)•  This  search  feature  will  wcxk  only  if  the  dots  follow  the  partial  name  without  any  intervening 
sptces.  This  kind  of  search  is  iq;>t  to  i»oduce  multiple  "hits"  (hits  are  entries  that  match  a  given  search  string). 

Note  that  the  partial  name  search  also  finds  any  NIC  handles  that  begin  with  the  partial  name  input  ("tos"  in  the 
examide  that  ftdlows). 


To  obtain  rdl  the  information  pertainmg  to  any  of  these  names,  do  a  WHOIS  search  on  the  handle  (the  text  in 
pareidieses  unmediately  ftdlowing  the  name);  this  will  produce  a  full  entry. 


WIKHS  Search  by  Handle 

If  a  WIKHS  search  produces  multqde  hits  on  your  query,  search  by  the  unique  handle  to  get  the  full  entry  the 
1^  you  want  to  dispiay.  Rtecede  ^  handle  with  an  exclamation  point  Users  on  hosts  running  a  UNIX 
operating  qrstem  may  need  to  precede  the  exclamadon  point  with  a  backslash  (^. 
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WHOIS  Search  by  Hostaame 

If  you  know  a  hostname  and  need  to  obtain  the  host  address,  you  may  use  WHOIS  to  look  it  up  by  typing  your 
iqait  as  shown  in  the  ftdlowing  example: 


''  '/s  --  ' 

S  <>■✓••  V,. 


« 


>s.t»Q«rjhxs» 


Nbie  flint  fliis  semch  produces  the  hostname,  the  host  address,  and  the  name  and  phone  number  of  the  Host 
Adninhimiar.  Rms^  ^(etnni>  will  produce  a  list  of  the  people  registered  with  the  NIC  as  users  of  that  host 
Yob  win  find  the  sane  infinnatioo  if  you  know  the  host  address  or  nickname  and  search  on  one  of  those  instead 
of  fltt  effichfl  hostname. 
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WHOIS  Search  by  TAC  Name 

You  may  use  WHOIS  to  obtain  a  TAC  telqphone  number  if  you  know  the  name  of  the  TAC.  A  search  by  TAC 
name  will  also  show  contact  information  on  the  Node  Site  CocMdinator  fmr  the  TAC.  Follow  the  example  below 
to  do  this  type  search. 


1 


5-i  V 


ataiDbox,  0£  other  fields  optionally  preceded 
•iUMtt  eti-nio*.  ifype  *2*  3fo«  abort,  2-pago 
£pll  doouma&tatlon,  or  hit  Jsesurk  to  exit. 

*  pro^aeau/  "€1  to  abort  a  aearcb  or  output  <- 


/  '  -SV?  >  .  , 

Jjr  ^ 

'  ''i 


,  .  <;■  -5^1.  ;  /;•* 


'  ',  '  ,  “  •■/.'/ "'4/  ^ '/V' 1  * 

'''•  '  ''  ' 


y-WM 

i#ll# 
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WHOIS  Search  by  PSN  Number 

You  may  use  WHOIS  to  search  by  node  (PSN)  number.  The  ou^t  from  this  search  will  show  the  usual  POC 
inftxmation  as  well  as  a  list  of  tte  hosts  connected  to  that  node  that  are  registoed  with  the  NIC. 
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WHKXS  Search  by  Network  Nomber 

You  may  use  WHOIS  to  search  by  network  niunbo'.  To  search  fm'  infcmnation  about  a  Class  C  network,  make 
sure  die  last  octet  in  die  network  number  is  zero.  To  search  fw  a  Class  B  network,  make  sure  that  the  last  two 
omets  are  zero.  See  section  8.4  for  a  discussion  of  network  addresses  and  classes. 


The  nsm  can  eater  "y”  or  siiiqdy  press  <Retom>  to  see  a  list  of  hosts  registered  with  the  NIC  as  part  of  this 
networit. 


47 


At  yoa  can  tee,  domain  searches  allow  you  to  kloitify  the  hosts  providing  name  service  for  the  domain,  as  well 
as  tte  names  mid  phone  mmibas  of  the  aibninistiative  and  technical  contacts  for  the  domain  (in  this  case,  the 
NIC  Hostmastff  groq>). 
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^.2  NIC/QUERY 

NK/Query  is  a  browsing  sovke  that  allows  you  to  page  through  general  information  about  the  Defense  Data 
Netwok  (Dra4).  Tofros  included  under  NIC/Query  are  presented  in  a  numbered  menu.  All  the  services  of  the 
TACNEWS  program  are  also  available  via  NIC/Query  tor  the  sake  of  simpler  user  accessibility. 

The  program  is  largdy  self-ex|danatory,  and  online  help  is  available  if  you  need  it.  You  do  not  need  a  login 
account  on  the  NIC  machiiie  for  access.  To  access  NIC/Query,  simj^y  open  a  TELNET  connection  to 
Nrc.DDNJ4IL,  rod  thro  type  nlc  or  qunry,  as  shovm  below. 


la  te  esanyile  above,  the  nser  asks  for  help  at  the  "NIC/Query:"  prompt  A  submenu  is  presented  so  he  can 
sdect  the  kvd  or  type  of  infixmation  he  wishes  to  have  diqdayed. 
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633  TACNEWS 

TACNEWS  is  s  NIC  online  service  that  offers  login  help  to  TAC  users.  It  also  offers  access  to  the  interactive 
TAC  locator  program  that  allows  you  to  find  the  three  TAC  phme  numbers  closest  to  a  phone  number  you  enter. 
TM9<EWS  pnyvides  a  mechanism  for  reading  the  DDN  Newsletters.  DDN  Managen^nt  Bulletins,  and  DON 
Security  BuDelins.  Users  should  read  these  publications  r^ulariy  to  stay  current  on  DDN  policies, 
amnuncemems,  and  networic  news  items. 

If  you  wish  to  have  newslettms  mid  bulletins  delivered  ratline  to  your  network  mailbox,  send  a  message  to 
R^1STRAR@NICJ>DN.MIL  including  your  name  and  address  and  indicating  that  you  wish  to  be  on  the  online 
distiibinioa  for  the  newsletters  and  bulletins. 

You  may  access  TACNEWS  by  logging  into  a  TAC  and  typing  tac&ews.  Alternatively,  you  may  open  a 
TELNET  connection  to  NICJDDN.MIL  firom  a  local  hc^  to  read  TACNEWS,  as  shown  in  the  examples  on  the 
ftdlowing  pages. 

TACNEWS  services  are  also  availaUe  via  the  NICTQuray  program;  this  redundancy  allows  users  connecting  to 
Ae  NTC  via  TELNET  to  talm  advantage  (rf  all  services  in  a  single  connection  session. 
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■'•^  A  A-a 


i  V.  •^  VW  ^ 
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NIC  Konnit  Server 

For  PC  wen  wto  cawot  acoen  FTP  ficm  liieir  hosts,  the  NIC  has  an  anonymous  Kennit  s^er  available.  (A 
server  is  a  software  modok  dm  provides  a  service  to  users  or  user  programs  that  request  it)  You  should  be 

wiii  the  Ketmit  file  trantfa  protocol  and  have  a  PC  communications  program  that  supports  that  protocol 
Before  yoo  attriapt  to  transfer  documents  with  it 

1b  download  a  file  from  the  NK  usiag  the  Ketmit  server,  proceed  as  follows: 

1.  Set  the  receive  packet  size  on  your  PC  Kennit  to  60. 

2.  Ct)nnecttoNICJ>DNJdlL(192.112.36.S)throughaTACorMini-TAC. 
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3.  Once  you  get  the  NKT  login  prompt  (@).  change  the  TAC  inteicqH  character  to  a  control-y  (^y)  by 
issuing  the  foUowiiig  TAC  command:  gi  25  <R«tuxn>.  Notice  that  you  must  type  the 
qnnbol  because  it  signals  the  TAC  that  you  are  issuing  a  command. 

4.  ness  <Relum>  to  get  the  NIC  prompt  (@  is  now  the  NIC  jHompt  symbol),  then  type 
Kamlt<nntun>.  This  conimand  activates  the  Kermit  server  on  the  NIC. 

5.  Drop  back  to  your  PC  Kermit  and  get  the  file  that  you  want  from  the  NIC. 

6.  When  you  are  fiinshed.  type  ”by«"  to  end  the  Komit  session  on  your  PC. 

For  iBoro  infcnnmioa  on  using  Kermit  through  a  TAC.  see  the  files  kermit-tac-info  .  txt  and 
KERMZT-NXCSERVER.TXT  in  the  NETINPO/  direcmry  on  the  NIC.DDNAfIL  host  These  files  are  available 
via  the  SERVICE  «nail  server  (see  Section  6.3.S). 


63^  NIC  Automated  Mail  Service 

SERVICE  is  an  automated  elecironic  mail  system  provided  by  the  DDN  Netwoik  Information  Center.  It  allows 
access  to  most  online  NIC  documents  and  information  via  electronic  mail. 

To  use  the  mail  service,  send  a  message  to  serviceqnic . ddn .mil.  In  the  SUBJECT  field,  enter  the  type  of 
service  yon  me  requesting,  fidlowed  by  any  arguments  needed  to  further  define  your  request  The  message  body 
is  nonaaUy  igaoied;  however,  if  you  leave  the  SUBJECT  field  empty,  the  first  line  of  the  message  body  is  used 
as  the  request  If  your  request  iiivtdves  the  transmission  (tf  large  fite,  they  are  bttdcen  into  smaller,  separate 
nmasages;  however,  a  Sew  files  are  too  large  to  be  sent  through  d>e  mail  system.  SERVICE  requests  are 
processed  aaiomatirsily  once  a  day. 

The  ftdhnving  services  ate  cutmtiy  avaiUUe.  Each  item  on  the  list  is  followed  by  an  exanqile  of  a  subject  line 
for  leqaestiag  that  service: 

HELP 


RPC  mum 


RPC  Index 


lEN  mm 


NETINPO  XXX 


SEND  XXX 


HOST  XXX 


This  message;  a  list  of  current  services. 

Subj:  HELP 

nnmi  is  the  RPC  number. 

Snbj:  RPC  822 

Rettieves  the  index  of  RPCs. 

Subj:  RPC  INDEX 

nnn  is  die  lEN  number  or  the  word  INIKX. 

Subj:  IEN828 

XXX  is  a  file  name  or  the  word  INDEX. 

Subj:  NETINFO  DOMAIN-TEMPLATE.TXT 

XXX  is  a  fully  specified  file  name. 

Snbj:  SEND  lETF/lWG-SUMMARY 

Snbj;  SENDINTERNET-DRAFTS/DRAFT-IETP-IWG-BGP-OO.TXT 

Returns  information  about  host  xxx. 

Snbj:  IiOSTNICJJDN.MIL 
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INIKX  Returns  the  master  list  of  available  index  files. 

FYI  nmi  Returns  the  q)ecified  FYI  document,  where  nnn  is  the  FYI  number  or  the 

word  INDEX. 

Subj:  FYI  1 

WHCXS  XXX  Returns  infmmation  about  xxx  fiom  the  WHOIS  service. 

Use  "WHOIS  HELP"  for  informatkm  on  using  WHOIS. 

Subj:  WHOIS  MCCOLLUMB 


M  Documaits  Published  by  the  NIC 

The  NIC  compiles  and  puUishes  online  versions  of  the  documents  listed  below.  The  file  nic-pubs.ut  in  the 
n^infiD/  dkeclory  on  NICDIW.MIL  contains  an  expanded,  annotated  list  of  publications  that  are  currently 
avaifaMe  online.  Many  ot  these  documents  are  deposited  at  the  Ddense  Technical  Information  Center  (DTIC), 
where  they  are  avaiUMe  to  military  network  users.  Hardct^es  of  some  documents  and  RFCs  are  available  fiom 
die  fanner  NIC.  SRI  hitetnatiomd  in  Menlo  Park,  CA  Contact  SRI  for  prices  and  ordering  information. 
Qniermg  mstractions  are  also  provided  in  die  online  file  nic-pubs.txt  You  may  contact  the  NIC  to  confirm 
document  avaikdrility  or  to  ieara  about  newly  available  documents. 

THE  DON  NEW  USER  GUIDE 

The  document  you  me  reading.  A  brief  guide  to  DIW  network  tools  and  services  designed  to  introduce 
users  to  the  network.  The  Guide  is  available  online  as  netinfo/nug. doc. 


THE  NETWORK  PROTOCOL  IMPLEMENTATIONS  AND  VENDORS  GUIDE 

The  Vendon  Guide  lists  scrfkware  and  hardware  implementations  of  the  DDN  protocols,  based  upon 
infomiation  sapfdied  by  vendors.  This  document  is  for  informational  purposes  only.  Entry  on  this  list 
does  not  tepiy  endorsement  Available  online  as  netinfo/vendors-guide .  doc.  SRI  in  Menlo 
Bark.  CA,  nuuniaing  an  qi-to-daie  version  of  this  guide. 


RPCm 

Reqpieats  far  Comments,  or  RPCs,  are  network  technical  notes,  each  of  which  is  identified  by  a  unique 
noBiber.  The  RFCi  are  available  online  as  rfc/rf cnnnn . txt  (where  mum  is  die  RFC  number). 
Hardcopfea  are  availaUe  fiom  SRI  Inieroatioiial,  Menlo  Parir,  CA. 
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63  On&ie  Reference  Ffles  at  the  NIC 

Sevcnl  otber  piMic  files  on  the  NIC  host  are  of  q)ecial  intnest  to  netwcMk  uso^.  The  pathnames  and 

brief  descriptions  of  some  oi  these  files  me  listed  below.  You  may  retrieve  these  files  via  FTP  (using 
l^SRNAME  montymous,  PASSWORD  guest).  See  Sectkm  5.12  for  FTP  instructions.  You  may  also  obtain  the 
files  by  electroaic  mail  usiitg  the  NIC  Mail  SERVICE  program  (see  Section  6.3.5)  or  via  the  NIC  Kermit  Server 
(see  Section  6.3.4). 

netlnfo/mil-nsc . txt 

Node  Site  Coocdinators  for  each  node  or  PSN  on  the  MILNET. 


netlnfo/hosts . txt 

Official  Internet  D(d>  Ifostname  Table,  which  lists  the  names  and  numbers  of  domains,  netwmks, 
gaiew^s,  and  hosts  on  the  DoD  Internet  It  is  designed  to  be  machine  readable.  From  this  file,  two 
additionai  files  are  generated: 


boats .  txt .  z.  a  UNIX  compressed  version  oi  the  hosts.txt  file,  and  mil-hosts .  txt.  a  complete 
listing  of  the  MILNET  hosts  in  hosts.txt 


net Inf o/hoat -location . txt 

Addresses  of  MILNET  hosts  locations,  sorted  geogrsphically. 


netinfo/hostserver-lnst euct Iona . txt 

Inslfnrthaw  for  using  the  NIC’s  hostname  server  to  transfer  the  host  table. 


netinf o/all-host-adminiat rators-a-1 . txt 

hffiitiry  Host  Administrators  "A"  through  "L,”  sorted  by  hostname. 


netinf  o/ndl-host-admlnlstrators-nt-z .  txt 

iffihaiy  Host  Admmistnifn  ”M"  daough  "Z,"  sotted  by  hostname. 


netinf o/nlc-puba . txt 

lafannaiion  dboot  pifelications  available  fiom  the  NIC. 


net Info /nug . doc 

Online  version  of  this  document 


antlnfo/wbat-the-nlc-doea . txt 

Oaaetai  kikmtikn  v^arffing  NIC  services. 


netlnfo/tteer— tenmlate .  txt 

Teafiate  Ibr  naan  who  warn  to  be  regiatered  in  the  WHOIS  database. 
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mtlnfo/tac-locatlon.txt 

Oeognythic  location  of  eadi  TAC.  This  file  is  useful  fw  locating  the  TAC  closest  to  you. 


netlnfo/usa-tac-phones . txt 

Phone  numbers  for  TACS  within  the  fifty  states. 


netlnfo/forelgn-tac-phones .txt 

Phone  nundms  for  TACs  outside  the  U.S. 


netlnfo/domain-contacts . txt 

Nnne,  maiftox,  and  phone  number  to  each  domain  contact  registered  with  the  NIC. 


nntinfo/network-contact s . txt 

Nune,  mailboK,  and  phone  nnmbm’  to  each  netwmk  contact  registered  with  the  NIC.  The  NIC  registers 
aD  IP  networics  and  designates  a  contact  to  eadi  one. 


netlnf o/OOnetinfo-index . txt 

Mane  and  a  brief  description  of  each  file  available  in  the  publicly  accessible  NETINPO  directory  on  the 
NIC  host 


nntlnf  o/kemlt-lnf  o .  txt 

Qeneed  mfonnation  on  die  Kemdt  program. 


netlnf  o/k«zinlt~nlcserver .  txt 

l^iecific  infannation  on  the  NIC  Kermk  saver. 


netinfo/kemit^tac-lnfo .  txt 

Spectfic  intomation  on  TAC  usage  with  KermiL 


protocols /goaip-vl .doc 

Veeiioa  1  of  die  GOSIP  docoment 


psotocols/goslp-ordex-lnfo . txt 

Deao^lions  of  GOSIP-ielated  documents  and  mfonnation  on  how  to  obtain  them. 


cfc/ rfmannn.txt,  where  nmn  is  the  RPC  nurdm 

NMwork  ledinicd  notea,  known  as  Requests  for  Commems,  or  RFCs,  are  online  in  die  directory  RFC: 
OB  dm  raCJMWJMDL  host  New  RFCs  are  announced  to  network  users  via  an  online  distribution  list 
amiaidned  hy  the  NTC.  Individnals  who  want  to  be  added  to  the  RFC  notification  list  should  send  a 
inemaia  to  rarc-BBQUESTdMic  .ddm  .mil. 
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rf c/rf c-index . txt 

Lists  an  RFCs  in  reverse  numerical  (»der,  with  the  most  recent  RFC  at  the  top.  Includes  authw,  title, 
dale  of  issue,  RPC  number,  number  of  hankx^y  pages,  number  of  online  bytes,  fcnmat  (ASCII  text  or 
PostScr^),  and  information  regarding  other  RTCs  diat  make  a  given  RFC  obsolete  w  update  it  Notes 
whedier  mi  RFC  is  also  an  FYI. 


£yi/fyinn .  txt,  where  nn  is  the  FYI  number 

>  For  Your  Information)  General  infonnation  technical  notes  issued  as  special  RFCs. 


f yi/ f yi-index . txt 

Miner  the  KPC  Index,  but  listing  only  FYIs.  Notes  the  correqxmding  RFC  number  for  each  FYI. 
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SECTION  7.  SECURITY  CONSIDERATIONS  AND  NETWORK  CONDUCT 


7.1  RequirraMiits  for  Legitimate  DDN  Access 

Only  autfaorized  iiaers  engaged  in  U.S.  Govnnniait  business  M’  ^licable  research  or  those  who  are  directly 
invtdved  in  providi^  opoations  or  system  support  for  Government-owned  or  Govemment-sponsmed  computer 
commimications  equigmient  may  use  the  DTOl.  The  netwtxk  is  not  available  for  use  by  the  g^ieral  public,  nor  is 
it  mtended  to  conqiiete  with  comparable  commercial  networic  services.  Users  of  the  DDN  must  not  violate 
privacy  or  other  apfdicable  laws  and  should  not  use  the  netwc^  ftH*  advotising  or  recruiting  purposes  without 
the  express  permission  of  the  Defense  InftHination  Systms  Agency. 

Uhaathorized  use  of  the  Drof  is  illegal  Persons  who  Iseak  into  Govenunent  networlcs  or  use  Government 
computer  resoutoes  without  authorization  will  be  prosecuted.  Hosts  that  permit  this  type  of  access  will  be 
discoonet^  firom  the  networic. 

[NOTE:  DISA  reserves  the  right  to  discontinue  DTOf  access  to  any  user(s)  who  ate,  in  DISA’s 
apmioo,  not  conducting  kgititnate  Government  business/hctivity.  DISA  will  send  one  letter  of 
warning  dnou^  command  diaruiels  (via  registered  mail)  to  any  user  found  to  be  conducting 
iU^titaate  basicess.  Should  the  illegitimate  activity  continue,  DISA  will  terminate  the  user’s 
access  without  additional  notice.] 


72  Security  Conaderations  and  Guidelines  for  Network  Conduct 

Several  levds  ttf  tesponsiUlity  provide  security  for  the  DIW.  At  the  most  basic  level,  individual  users  should 
take  pncantioas  to  minimiaae  die  chances  that  their  accouits  could  be  compromised.  They  bear  the  primary 
lesponribilhy  for  die  proiectioa  of  thrir  informatioa  If  nme  users  were  to  take  this  reqxxisibility  seriously  and 
act  acoQidhi^,  the  maiority  oi  computer  security  breaches  would  not  occur. 

You  can  ben  pnaea  yow  own  files  via  careful  password  managanent  Do  not  use  an  uniiKxlified  wmd  from 
auf  languagn  thu  mclodes  words  ^Ded  backward.  Your  Host  Administrator  should  have  suggestions  as  to 
proper  panword  choices. 

Poflow  dteSB  recommendations  to  reduce  the  possflnlity  of  compromise  of  your  computer  system  w  files: 

Do  not  leave  your  terminal  logged  in  and  unattended. 

Know  your  opeathv  system’s  protection  mechanisms  and  make  sure  that  all  your  files  are  set  up 
Witt  qipraptiate  protection  modes. 

Choose  a  password  that  meets  the  guiddines  of  your  rite  or,  at  minimum,  one  diat  is  not  an 
nomodified  word  firom  any  language.  A  simple  modification  involves  prefixing  a  wad  with  a 
naraend  (or  several  mme^). 

Change  your  password  as  required  by  your  site  or,  at  minimum,  every  six  months. 
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Do  not  write  your  password  down  on  paper  or  record  it  in  a  file  suned  on  any  compute'  disk, 
floii^  Ask,  rc,  or  magn^  tape. 

Users  have  die  primary  leqxxisibility  for  protecting  their  own  accounts,  but  several  other  peqile  have  roles  in 
providuig  system  and  netwtrt  security. 

Host  Administrators  are  generally  teqxMisibk  for  ensuring  that  their  host  sites  maintain  a  reasonable  level  of 
protectian  from  the  possibility  of  netwtak  compromise.  They  must  act  as  liaisons  with  the  DDN  Netwcnk 
Secnr^  Officer  (DIR4  NSO),  die  Security  Coordination  Center  (SCQ,  vendors,  law  enforcement  bodies,  and 
other  appropriate  agencies  to  resolve  any  outstanding  security  problems  and  prevent  their  recurrence.  They  are 
responsSde  for  die  enforcement  of  all  DDN  policies  at  their  site. 

The  NSO  reconMnends  security  policy  affecting  the  DDN  and  is  re^nsible  fm  its  general  enforcement  The 
NSO  also  wodcs  closely  with  Ifost  AdministrattKS  to  resolve  netwmk  and  related  computer  security  problems  cr 
inddeiMs  affecting  their  sites. 

The  DIW  Security  Comdination  Center  is  located  at  the  NIC.  The  SCC  acts  as  a  liaison  between  Host 
Admausliiaofs  and  the  NSO  tuid  between  NQLNET  sites  and  Internet  security  response  centos  such  as  the 
Conqwter  Emergency  Respmise  Team  (CERT). 

If  you  suspect  that  a  computer  break-in  has  occurred,  you  should  contact  your  Host  Administrate.  The  flow  of 
secnrity  incident  rqxvtmg  should  be  from  the  end  user  to  the  Host  Administrator  e  othe  appmfxiate  individual, 
who  then  if  the  proUem  is  local  e  networic  related.  If  the  problem  is  network  relat^  the  Host 

Admmistcalor  should  tda  die  proWem  to  the  apprc^Hiale  site  as  noted  in  DDN  Security  Bulletin  9003  [7].  In 
such  cases,  te  Host  Administrator’s  first  stqi  is  to  call  the  NQLNET  Moniteing  Center  for  your  area.  Phtme 
nnmbets  for  the  Mbniioring  Centers  are  foutid  in  Sectkm  9.2. 


73  N^work  Conduct 

The  network  enviroiimmit  is  somewhat  different  from  the  traditional  woriqilace.  Rules  for  proper  conduct  are 
gradnafiy  emerging  to  fit  this  new  environment  The  rules  and  guidelines  presented  hrae  rdhoe  to  four  areas: 

passwords 
file  psoiectkm 
plagiariam 
networkmail 


73.1  FMNnrords 

Snoe  use  of  the  network  is  restricted,  passwords,  access  codes,  and  TAC  cards  should  never  be  shared.  Clumge 
yoat  hoot  login  password  r^nlariy  and  rqxirt  any  unauthorized  use  of  passwords  to  your  Host  Administrate'. 
lOLNET  TAC  cards  and  records  of  host  Userids  and  Access  Codes  sh^d  be  kept  in  a  safe  place.  Users  should 
be  flanlliar  wkb  and  frdlow  local  security  guidrimes. 
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73,2  File  Protection 

Most  opentting  syslrais  have  a  method  of  iHotecting  files  from  netwc^  read  and  write  access.  The 
lecommended  file  protectkm  default  for  directories  is  "no  read  and  no  write  to  outside  users."  If  your  files  are 
protected  in  this  way,  you  can  still  make  diem  accessible  to  outside  users  over  the  netwtHk,  but  you  must  take 
action  to  reset  file  and  directoy  protections  to  make  this  happen. 

As  a  new  usm',  you  should  find  out  what  the  fHotection  default  is  on  your  host  and  ensure  that  files  you  dm’t 
wmit  accessiUe  to  other  users  are  protected.  Ask  you  Host  Administrator  about  default  file  and  directory 
protection  settings  and  for  instructions  on  protecting/unprotecting  files. 


733  nagiarism 

Even  if  a  file  is  unprotected,  you  are  not  free  to  copy  or  read  it  without  first  asking  permission.  It  is  as 
inappropriate  to  read  online  mail  or  taowse  through  (Miline  files  without  pomission  as  it  would  be  to  read  a 
ctdleague’s  hmdcopy  mail  or  rummage  around  in  his  desk. 

Electrooic  plagiarism  of  another’s  work  is  just  as  unethical  as  plagiarism  by  any  oth»  means.  Be  sure  to  credit 
users  whose  work  you  cite  or  whose  ideas  you  express.  Copyright  laws  must  also  be  carefully  observed  and 
obeyed. 

It  is  easy  and  convenient  to  exchange  code  and  programming  across  the  network.  Many  code  developers  are 
extremely  generous  in  sharing  thdr  work.  Even  so,  bef<»e  copying  or  using  someone  else’s  code,  be  sure  to  get 
permisaon  from  the  developer  or  maintaina  and  credit  the  source  in  your  documentation.  Under  no 
cocumstances  should  programming  or  code  from  anywhere  on  the  netwt^  be  used  (verbatim  or  edited) 
comnmcially  without  the  owner’s  explicit  permission. 


73,4  MaU 

Electronic  mail  is  a  powerful  communication  tool  that  must  be  used  with  care.  The  following  guidelines  will 
he^  you  avmd  offendmg  other  users  and  overloading  the  netwtak. 

It  is  easy  to  forward  mail  you  receive;  but  the  writer  may  never  have  intended  that  anyone  else  read  the  message. 
For  this  reason,  it  is  wise  to  check  with  the  sender  b^ote  Cnwarding  a  private  message  of  any  significance. 

The  Dm  is  a  business  environment,  so  try  to  keep  your  messages  shwt  and  to  the  point  It  is  easy  to  send  off 
a  message,  only  to  realize  a  moment  later  that  you  needed  to  say  more.  To  avoid  this,  organize  your 
thoughts  and  send  a  single  message  rathm-  than  severd  incomplete  ones.  This  will  make  your  mail  far  meue 
us^  to  the  recipients,  and  minimize  the  load  on  the  netwerit 

Online  mail  tends  to  change  a  pmson’s  style  of  communication.  Sending  mail  is  so  quick  that  it  is  tempting  to 
SNid  your  immediate  reaction  to  a  message  rather  than  a  more  considered,  appre^xiate  response.  Do  not  use 
dero^ttory  or  inappropriate  language  in  messages,  especially  those  sent  to  discussion  groups.  Keep  in  mind  that 
no  one  I&es  to  be  offended  or  embarrassed  by  carek^  comments. 


DBAfT 


59 


DRAFT 


SECURITY  CONSIDERATIONS  AND  NETWORK  CONDUCT 


NIC  60001,  October  1992 


Finalty.  tf  you  i^ulaily  send  mail  to  a  large  group,  learn  how  to  create  a  mailing  list  Otherwise,  each  recipient 
must  scit^  through  a  list  of  the  mailboxes  of  all  other  recipioits  as  a  part  of  the  message  header. 

Remember,  use  ttf  die  networir  is  a  privilege.  It  is  ymir  duty  to  use  the  network  responsibly  as  it  was  intended 
to  be  imed  and  to  obey  genmal  network  policies.  In  return,  the  netwmk  gives  you  access  to  many  tods  and  to 
an  online  conununity  of  other  networir  users. 


7.4  Additional  Security  Information 

Host  and  system  arbninistratms  are  encouraged  to  order  "DCAC  310-PllS-l,  DDN  Security  Management 
procedures  for  Ifost  Administrattvs,"  May  1991.  Copies  may  be  obtained  in  the  following  manner 

1.  Government  agencies  may  request  a  publication  by  sulxnitting  a  DCA  Form  1 17,  Publication  d 
Bhmk  Form  Request,  to  the  Director,  DISA,  ATTN:  BIAR,  Arlington,  VA  22204-2199. 

2.  Other  organizations  may  request  a  publication  by  submitting  a  letter  with  ^jpropriate  justification  to 
the  address  given  above.  The  DCA  Form  117  is  used  by  Government  agencies  only. 
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SECTION  8.  NETWORK  CONCEPTS  OVERVIEW 


8.1  Introduction 

lo  the  following  paragraphs,  we  provide  some  general  inf(»nation  about  topics  such  as  usage-sensitive  billing, 
network  gatewayaAxMicentrauvs.  network  addresses,  the  E>otnain  Name  System,  and  GOSIP.  Although  most  new 
DIW  users  will  not  be  actively  involved  in  any  of  the  areas  covered  in  this  section,  they  do  involve  concepts 
you  should  become  familiar  with,  since  they  are  important  to  all  DDN  usos. 


8.2  Usage-Sensitive  Billing 

The  usage-sensitive  Inlling  system  was  implemented  on  the  DDN  to  distribute  costs  more  equitably,  based  on 
actual  use  of  netwrak  resources.  The  tariff  structure  is  designed  to  support  cost  recovery  so  that  the  amount 
recovered  from  each  subscriber  is  proportional  to  that  subscriber’s  use  of  networic:  resources. 

Generally  ^peaking,  all  hosts  and  dedicated  terminals  are  charged  a  basic  monthly  rate.  Users’  netwrak 
connections  are  charged  on  a  po'-minute  basis.  A  charge  is  also  levied  for  each  Idlopacket  of  traffic  sent  by 
each  host  or  terminal  user.  Charges  reflect  peak-versus-nonpeak  usage  and  (vecedence  level. 

Nfonthly  1^  are  sent  to  designated  representatives  of  the  military  taanches  as  well  as  to  otho-  Government 
agencies.  The  bills  ate  then  distributed  acccnding  to  locally  established  policies.  That  is,  a  packet  of  sevoal 
1^  might  be  sent  to  a  site  and  dien  distributed  to  other  ir^viduals  by  die  tailing  Point  of  Contact  (POQ  at  that 
site. 

It  is  rare  for  sn  individual  us^  to  see  a  bill  Ifowever,  you  should  be  aware  that  your  use  the  DDN  does 
affect  costs  charged  back  to  your  service  and,  periuqis,  to  your  host  site.  Therefore,  all  usns  should  be 
conscientkius  in  conforming  to  host-site  usage  policies. 

The  NIC  provides  a  Usage  Sensitive  Billing  (USB)  Service  Desk  to  heh>  answer  inquiries  from  DDN  users  or 
user  organizations  regarding  die  traffic  andAH*  connection  charges  shown  on  their  billing  rqxats.  USB  Service 
Desk  personnd  are  available  by  phone  Monday  through  Riday  from  9:00  a.m.  to  S:00  p.m.,  Easton  time. 
Electronic  mail  is  accepted  24  hours  per  day. 

Sovice  Dedt  personnel  have  access  to  many  sources  of  DDN  usage  infmmation.  They  are  available  to  answer 
general  questions  as  well  as  site-  or  user-qiecific  questions.  In  the  event  a  question  or  inquiry  goes  beyond  the 
scope  of  the  Service  Desk,  the  caller  can  te  referr^  to  a  more  appropriate  contact  ot  agency. 


Use  the  ftdiowing  information  to  contact  the  USB  Service  Desk: 


By  Electronk;  Mail: 

BILLING@NICDDN.MIL 

By  Phone: 

1  (800)  36S-DNIC  (inside  the  U.S.) 

1  (703)  802-4S3S  (outside  the  U.S.  or  in  the  Washington  D.C.  area) 

By  U.S.  MaU: 

DDN  Network  Inftvmation  Center 

ATIN:  Usage-Sensitive  Billing  Desk 

14200  Park  Kfeadow  Drive,  Suite  200 

Chantilly.  VA  22021 
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83  Network  Concoitnitors 

N^wodcs  can  be  cat^orized  acccxding  to  size  or  geogn^thk  distribution,  and  they  can  be  referred  to  as  local 
area  nrewoifcs  (LANs)  or  wide  area  netwtxks  (WANs).  A  LAN  might  serve  a  single  t^ice,  a  building,  or  an 
eittire  inilitai7  site.  WANs  are  typically  cross-country  networics  employing  technologies  such  as  satellites  or  long 
diatanoe  land  Unes;  diey  can  serve  large  geographic  areas  such  as  military  installations  located  throughout  the 
worid.  The  DIM  is  a  WAN  that  reaches  all  majm’  DoD  installations  wo'ldwide. 

To  expand  computer  communications  not  only  across  geographic  distances,  but  also  across  different  networking 
techncdogies,  ^ueways  are  used  to  comiect  networks  tog^her  into  internetworks  tv  "intonets.”  The  DDN  is  part 
of  an  IP-based  intorietwtrt.  known  to  DDN  users  as  "the  Intonet" 

The  use  of  gateway  concoitratars  as  a  medKxl  of  connecting  to  the  DDN  is  a  relatively  new  trend.  Gateway 
concentrators  enable  LANs  and  hosts  at  military  installations  to  connect  to  the  DDN.  G)ncentrat(xs  lessen  the 
need  for  individual  host  connections  without  limiting  local  usos’  access  to  full  DDN  service. 

Greeway  concentrator  use  increased  when  DISA  limited  the  number  of  PSN  ports  that  would  be  available  to 
connect  hosts  directly  to  the  DDN.  This  Hmitatkm,  coupled  with  the  long  lead  time  required  for  direct  host 
connections,  Imt  impetus  to  the  establishment  ol  gateway  concentrator  programs  fm-  the  military.  Currently,  the 
Air  Force  and  die  Army  have  concentrator  imjgrams  to  fulfill  their  long-haul  data  communication  requirements. 
These  programs  have  become  their  primary  method  oi  connecting  unclassified  computer  systems  to  the  DDN. 

Gaiew!^  concentrators  provide  a  number  of  advantages  for  connecting  installations  to  the  DDN: 

•  Grcrder  Crmncctkm  Capacity 

WiA  the  installation  of  a  gateway  concentrator  sa  a  local  site,  the  number  of  hosts  that  can  be 
connected  to  the  DDN  is  no  longer  limited  by  the  number  ai  pwts  available  on  a  PSN.  Instead, 
many  hosts  can  be  connected  to  a  concentraux',  and  the  total  amount  of  traffic  they  pass  to  the 
Dm  is  accommodated  by  the  cormectkxi  between  the  gateway  concentrator  and  the  MILNET  PSN 
to  which  it  is  attached. 

•  Quick  Crmnection 

The  gateway  concentrator  program  was  designed  to  allow  multqile  hosts  to  access  a  single  DDN 
port  simultaneously.  Computes  at  an  instailatitm  that  requites  unclassified  worldwide 
communication  will  be  coruiected  to  the  Int^net  automatically  because  their  local  networics  are 
nttnrKi»H  {Q  the  Internet  via  the  concmittatcx.  Thus,  these  ho^  will  not  require  direct  connections  to 
Dm  ports.  This  configuration  enables  the  various  military  services  (e.g..  Air  Frace,  Army)  to 
manage  diek  host  connections  directly  and  to  avoid  the  long  wait  for  individual  host  connections  to 
IH^  ports. 

•  Lower  Cost  Per  Host 

Because  the  IKIN  usage-sensitive  billing  system  structure,  the  gateway  concentrator  [xograms 
reduce  costs  for  DDN  connectian.  With  the  installation  of  a  gateway  concentrator,  the  charges  for 
initial  host  connections  are  reduced,  as  the  service  is  charged  cmly  once  for  the  initial  connection  of 
the  concentrator  itsdf  rather  than  for  each  individual  host  connection.  In  addition,  traffic  between 
local  hosts  on  the  network  behind  a  gateway  cmicentrator  will  not  be  billed  because  such  traffic  will 
not  travel  across  DDN  facilities. 
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The  Air  Force  has  a  help  desk  at  the  Internet  Control  Center  (INCQ  to  aid  concentratCK'  usos  in  accessing  the 
DDN: 


AFINCC@SERVER.AFJdIL 

Headquarters  Standard  Systems  Centa/AQPC 

BiBldhig  8S7,  Room  200A 

Gunter  Air  Force  Base,  AL  36114-6343 

(205)  416-5771.  (205)  416-5861;  (DSN)  596-5771.  596-5861 


8.4  Netwoiit  Addressing 

The  networir  address  is  the  t^Ocial  numeric  address  of  a  host,  TAC,  ex'  gateway  (as  cq>posed  to  the  official  name 
by  which  diese  entities  are  addressed).  Netwtxk  addresses  take  the  format  "nnnjuin.nnn.nnn"  (dotted  decimal 
format),  where  nnn  represents  an  iqi  to  3-digit  decunal  idoitifier  from  0  through  255.  and  each  numoic 
componoit  is  separated  Cron  the  next  with  a  period.  Each  decimal  part  rq>resents  one  octet  of  a  32-bit  netwok 
addi^  The  standard  Internet  address  is  divided  into  two  parts:  a  netwok  part  and  a  local  host  part  Based  on 
this  two-part  division,  three  classes  of  Internet  addresses  have  been  defined:  Class  A,  Class  B,  and  Class  C. 


CLASS  A  Network  Addresses 

Class  A  network  addresses  have  the  fc^wing  characteristics: 

•  Conqmsed  (rf  a  1-byte  network  address  tmd  a  3-byte  local  address. 

•  The  highest-older  Ut  of  the  (1-byte)  netwok  address  is  set  to  0. 

•  Therrfoe,  the  first  (or  network  a^ress)  byte  of  a  CLASS  A  address  must  be  in  the 
range  ftom  0  to  127. 

•  Coosequemly,  CLASS  A  could  have  as  numy  as  128  networks  with  2^  (16,777,216)  hosts 
on  each  of  these  networiu. 

All  directly  cormecled  MILNET  hosts  are  on  network  26,  which  is  a  Class  A  networic. 

For  MILNET  hosts, 

•  dm  first  part  o[  the  address  is  the  netwok  number  (26); 

•  the  second  part  is  the  physical  port  numbo  on  the  host’s  PSN; 

•  the  dikd  part  is  the  logical  port  number  (currently  zero  fo  MILNET  hosts); 

•  the  fourth  part  is  the  mimbo  of  the  PSN  to  whidi  the  host  is  connected. 

Therefore,  a  host  widi  the  address  26.31.0.73  is  on  netwok  26  (the  numbo  assigned  to  the  MILNET)  and  is 
attached  to  pot  31  on  PSN  73. 


CLASS  B  Network  Athfereascs 

Class  B  networit  addresses  have  the  following  characteristics: 

•  The  two  high-ordo  bytes  ci  the  Internet  address  contain  the  network  number,  while  the 
two  low-order  bytes  contain  die  local  host  number. 
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•  The  highest  older  bils  are  set  to  10,  which  means  that  the  first  byte  must  be  a  number  in 
the  range  128  to  191. 

■  Consequently,  CLASS  B  could  have  as  many  as  16,384  netwcxiu  with  2'*  (6S336)  hosts 
on  eadi  of  these  networics. 


CLASS  C  Network  Addresses 

Class  C  networit  addresses  have  the  following  characteristics: 

•  The  networic  number  is  contained  in  the  three  high-order  bytes  of  the  Internet  address, 
while  die  local  host  address  is  represented  in  the  single  low-<xder  byte. 

•  The  dace  highest-ordCTlMts  of  die  networic  address  are  set  to  110. 

•  Therefore,  the  ffaot  byte  must  be  in  the  range  192  to  233. 

•  Consequently,  CLASS  C  could  have  as  2,097,152  netwmks  with  2*  (256)  hosts  on  each  of 
these  netwo^. 

The  Intnnet  Registry  (IR)  at  the  DDN  NIC  assigns  the  networic  porticMi  of  an  address  to  a  network.  The  local 
network  coordinator  for  a  iqiecific  host  assigns  the  local  pcHtion  of  that  host’s  netwexk  address. 

Here  are  some  exanqdes  of  how  each  type  of  networic  number  lodes: 

Class  A:  26.31.0.73  26.0.0.0 

Class  B:  128.18.1.1  128.18.0.0 

Class  C:  192.67.67.20  192.67.67.0 

ONOTE:  A  network  address  is  diCfoent  fiom  a  user’s  address.  The  term  "user  address”  refers 
to  a  person’s  electrtmic  mailbox,  such  as  henrygnic . ddn  .mil.] 


hi  addition  to  the  three  classes  defined  above,  a  class  of  addresses  whose  three  highest  cuder  Nts  are  111  has 
been  defined.  It  is  current)^  in  limited  use.  This  class  is  sometimes  referred  to  as  "CLASS  D.”  Figure  8-1  on 
die  next  page  grqihically  rqxesents  the  three  major  Internet  address  classes. 
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CLASS  A  IiMcnet  Address: 


Byte : 

1 

2  3 

4 

Bit: 

0 

07 

15 

23 

31 

0 

Network 

Address 

Local  Address 

CLASS  B  bdcract  Address: 

Byte:  12  3  4 

4 - »  A - ►  4 - ►  ^ - ► 

Bit:  0  07  15  23  31 


CLASS  C  brtenMt  Address: 

Byte:  12  3  4 

■e - ►  4 - ►  4 - ►  4 - ► 

Bit:  0  07  15  23  31 


Figure  8-1.  Internet  Address  Classes 
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&.4J  Finding  Netwoiic  Address  Information 

The  WHOIS  daudnse  at  the  NIC  contaiiis  POC  information  for  every  networir  the  IR  (Internet  Registry) 
assignB:  however,  it  may  not  cont^  information  fcr  every  host  on  a  network.  Therefcae,  remember  to  search  on 
die  network  portion  d  the  adrhess  rather  than  the  complete  address  when  you  are  using  the  WHOIS  prognun  to 
obtain  mformatini  on  a  host 

For  exaoqde,  Ae  Class  C  address 


192.112.36.70 


is  not  in  die  database,  but  searching  on 


192.112.36.0 

shows  you  mfotmalioii  for  LOCALNET.  When  using  W1K)IS  to  find  the  POC  information  for  a  network,  set 
the  local  pordoiKs)  of  the  address  to  zero.  (See  Section  6.3.1.3  for  an  example  of  using  WHOIS  to  search  for  a 
network  address.) 


8.4J  Obtaining  Network  Addresses 

DISA  assigns  aU  MILNET  networit  addresses  (Class  A,  network  26),  and  the  MILNET  Manage  must  approve 
my  dianges  to  or  dektions  of  MILNET  network  addresses. 

The  NIC  assigns  aU  odier  Class  B  and  C  networit  addresses.  Requests  to  obtain  an  official  Class  B  or  C  numbo- 
or  to  make  dianges  to  hosts  regisieted  with  these  addresses  should  be  directed  online  to 
HOSTNASTEReNZC.DDN.MiL.  To  atiange  for  a  hardcoi^  iqjidication,  call  the  NIC  at  1  (8(X))  36S-£»nC. 
^iplications  can  also  be  requested  through  the  SERVICE  mail  server  (see  Section  6.3.5). 


S.4  J  Knowing  Your  Network  Address 

Each  ma  should  know  the  network  adAess  of  hisAer  host  It  is  especially  important  to  know  your  host’s 
address  if  you  use  a  TAC  or  Nfini-TAC  because  you  win  have  to  enter  the  adtfaess  as  part  of  the  TAC  login 
mqpwnce.  Your  host  adless  is  dlen — but  not  always — the  address  primed  on  your  TAC  card  by  the  label 
AirnKXUZINO  host.  Even  if  you  have  a  scr^  file  or  program  diat  enters  this  information  for  you  as  you 
log  in.  leant  your  address  so  yon  can  tell  k  to  the  NIC  or  ^  MILNET  Monitoring  Centor  if  you  c^  them  about 
a  logm  proMem. 


&5  The  Doranfai  Name  System 

IhMi  the  iaid> 1980b,  a  Drat  host  could  find  data  on  hostname-to-network-address  translation  solely  through  the 
use  of  a  flk  caDed  the  host  table,  which  was  generated  at  the  NIC. 

The  hon  table  contained  the  name  and  networit  address  oi  every  host  that  was  registered  with  the  NIC. 
kirtividBal  boat  sites  had  to  transfer  and  instaQ  new  cofses  of  die  host  table  regularly  in  order  to  have  cmect 
htMt  adtlwsaiiig  infimaatioii.  The  host  taUe  had  to  be  updated  frequently  to  enaUe  mail  and  other  data  to  be 
sent  bade  and  fiMh  across  the  bkemeL 
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As  luae  went  on,  bowever,  the  niinibn  of  hosts  listed  in  the  host  table  became  so  large  that  the  file  was  difficult 
to  mainiam  ^dentty.  as  well  as  difficult  and  time-oxisuming  for  sites  to  transfer.  As  an  alternative  to  the  host 
table  file,  the  Domain  Name  System  (DNS)  was  develqied.  Currently,  the  NIC  maintains  data  fw  both  the  host 
table  and  the  mS.  The  host  taUe  listing  is  an  extremely  restricted  subset  of  the  hosts  registered  in  the  Domain 
Name  Systeaa. 

hi  a  autshdl,  the  roiS  is  a  way  of  administratively  grouping  hosts  into  a  hioatchy  of  authority.  The  DNS 
iflows  addressmg  infonnatioa  to  be  widely  distributed  and  iqxlated  locally,  which  results  in  mme  efficient  data 
letieval  ud  maimenanoe.  Cooqdete  conversion  to  the  DNS  will  eliminate  the  need  fw  one  site  to  maintain  a 
centralized  table  of  names  and  addresses. 

Under  the  IWS,  host  name  and  address  information,  akmg  with  other  data,  is  distributed  throughout  the  network 
in  a  hierarchical  scheme.  At  the  top  of  the  hierarchy  are  the  root  servers  that  contain  infmmation  about  the 
top-level  and  second-level  domains.  At  the  bottom  of  the  hierarchy  are  the  individual  hosts. 

Each  dom^  within  the  roiS  must  have  two  hosts  that  provide  name  service  fw  it,  which  means  diat  these  hosts 
must  run  programs  called  name  servos.  When  queried  by  programs  known  as  resdvers  Oocated  on  individual 
hosts),  these  name  servers  provide  name  and  address  infonnation  to/for  the  potkular  hosts  within  their  domain. 
(The  hosts  themselves  are  called  servers,  even  though,  technically,  a  sover  is  a  program.)  Each  server  contains 
a  subset  of  lalemm  domain  infiormation.  If  a  query  arrives  at  a  server  that  does  not  have  address  information  for 
a  particniar  host,  it  will  be  aUe  to  direct  the  query  to  the  server  where  the  information  resides. 

Queries  r^mding  specific  hostnames  usually  begin  by  addng  a  servo  that  knows  about  the  tr^levd  domain 
under  which  that  host  Calls.  Currently,  most  domains  on  the  Ininnet  are  registered  within  one  of  the  following 
lop-levd  domains: 

•  COM  for  commercial  insdtutioas 

•  EDU  for  educational  institutions 

•  GOV  for  noo-mililary  government  agetxnes  and  organizations 

•  MIL  for  military  agmcies  and  organizations 

•  NET  for  backbone  networking  entities 

•  CXIG  for  non-profit  institutioos. 

Top-level  domaina  are  also  regisieied  for  countries— e.g.,  BE  for  Bdgium  and  FI  for  Finland.  The  NIC  registers 
information  for  only  the  lop  level  of  these  country  domains.  Lower-level  domains  are  registered  within  the 
country. 

Hosts  vqpaiered  on  the  Internet  most  have  names  that  reflect  die  domains  mda  which  they  are  registered.  Such 
naaaea  are  called  Fully  Qualified  Domain  Names  (PQDNs)  and  include  all  domains  of  which  the  host  is  a  part. 
For  ezamjde,  NIC.DI^.MIL  is  the  name  (rf  the  NKT’s  main  hosL  The  hostname  NIC J>DN.MIL,  when  taken 
piece  by  pieoe.  gives  information  about  the  host  itself.  A  hostname  aiding  in  MIL  signifies  qxmsorship  from  a 
ndfitary-^dated  organization.  The  second-level  domain.  DIW,  indicates  that  the  host  is  used  by  an  organization 
widdn  foe  IXW.  The  third-level  domain,  NIC,  indicates  the  host  is  used  by  the  NIC. 

Between  foe  root  servers  and  die  individual  hosts  ate  odier  hosts  that  act  as  servers  and  contain  part  of  the 
iaformalion  within  die  DNS  Uerarchy.  For  example,  a  program  looking  for  the  address  of  NIC.DDN.MIL  might 
first  send  a  query  to  a  root  server.  The  root  server  would  not  know  the  address  of  NIC.DDN.MIL  in  particular, 
bat  woidd  dhect  the  query  to  anodier  server  dim  had  informatioa  about  the  DDN.MIL  domain.  The  sectxid 
server  would  know  which  hosts  provide  name  sovice  about  NIC.DDN.MIL  and  direct  the  query  to  those  hosts. 
FfaMdly,  die  query  would  arrive  at  the  qiecific  host  providing  name  service  fix'  NIC.DDN.]V^.  That  host  would 
return  the  networic  adfoess  infionnatioa  via  the  IMS  to  the  host  that  initiated  the  query.  All  of  this  happens  voy 
quickly— in  leu  dm  a  minale. 
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MiB  pragnuBS  must  know  the  address  of  each  host  to  which  they  s^  mail.  Users  normally  include  a  hostname 
m  the  headers  ci  teir  messages.  The  mail  program  qunies  eitlm  the  DNS  <x  a  host  table  to  translate  that 
hostname  to  a  network  address.  This  enabl^  the  mail  message  to  be  delivned  across  the  network. 

For  eiampte,  if  a  user  named  Sam  wants  to  send  mail  to  his  Mend  Joe  at  the  host  EXAMPLE.SAMPLE.COM, 
he  can  do  so  m  one  two  ways. 

1.  Via  die  Ifost  TaUe — 

•  The  host  EXAMPLE.SAMIT£.COM  is  registered  in  the  host  table  along  with  its  netaddress. 

•  The  mail  program  finds  the  OKiect  netaddress  from  the  host  taUe  on  the  sender’s  local  host 
and  sends  the  mail  to  Joe. 

In  tUs  method  of  transmission,  every  host  that  Sam  wants  to  communicate  with  must  be  listed  in 

the  host  table  file  on  his  own  host.  Sam  may  not  be  able  to  reply  to  messages  sent  to  him  if  his 

host  does  not  recognize  the  hostname  in  the  sender’s  return  addr^. 

2.  Via  the  Domain  Name  System — 

•  'The  mail  program  trying  to  deliver  a  message  addressed  to  JOE@EXAMK£.SAMn£.COM 
sends  a  tracker  called  a  query  to  one  oi  seven  root  servers. 

•  The  toot  server  has  infoimatian  on  the  COM  top-levd  domain  and  knows  which  two  domain 
snvers  hdd  fiirdier  information  on  the  SAMIT^COM  domain. 

•  The  root  s»ver  pmnts  the  quny  to  those  domain  servers. 

•  When  the  query  arrives  at  the  ultimate  destination  server,  it  leans  the  netaddress  of  the  host 
EXAMFLE.SAMFLE.COM,  and  the  mail  program  obtains  the  infonnation  necessary  to 
establish  a  padi  from  the  sender’s  host  to  Joe’s  host. 

•  The  quay  directs  the  mail  down  dutt  pah  to  Joe’s  mail  account  on  the 
EXAMPLE.SAMFLE.COM  host 


8.6  Govcmraait  Opai  Sjstoms  Interconiiectioii  Profile  (GOSIP) 

The  Government  Open  Systems  Interconnection  Profile  (GC^IP)  is  a  document  tha  describes  the  Government’s 
phtu  to  transilioo  itt  naworits  from  the  TCP/IP-based  proioods  to  international  protocols  based  on  the  Open 
Syaieaa  hMetoonneciioa  (OSI)  Rderence  Model  The  pial  is  to  add  OSI-based  functions  to  the  Internet  without 
mcrificing  services  now  availaUe  to  frunnet  users. 

Several  dneumentt  pertain  to  OOSQ*  or  its  implemeDtation;  however,  we  will  mention  only  one  resource  tha  will 
point  yon  toward  die  moa  current  inforraatioB  availaUe. 

RPC  1169,  ”Ex|daiiifaig  die  Role  ai  GOSIP,"  [6]  discusses  how  GOSIP  should  be  qiplied  to  nea-term  network 
phaning  and  eqilaiiit  the  nde  and  applicabUiiy  of  the  GOSIP  document  In  addition,  it  has  an  q^iendix  tha 
dBectflies  other  GOSIP  documents  and  tells  how  to  obtain  them.  The  qipendix  also  lists  contacts  for  further 
infannatai  rqanMim  die  documents.  This  RFC  will  probably  be  iqidated  as  the  status  of  GOSIP  changes,  so 
chedc  the  RPC  hidex.  availaUe  a  the  NIC,  to  ensure  that  you  have  die  most  current  information. 


68 


DRAFT 


NIC  60001,  October  1992 


NETWORK  SERVICE  CENTERS  AND  CONTACTS 


SECTION  9.  NETWORK  SERVICE  CENTERS  AND  CONTACTS 


Tbe  three  nuia  xrvioe  centeis  on  the  Droi  are: 

•  The  Dl^  Networic  Infonnation  Center  (NIQ 

•  The  Networic  Monitoring  Colters  (NMQ  for  the  United  States,  Pacific,  and  Euit^iean  areas 

•  The  D^snae  Monnation  Systems  Agency’s  Defense  Network  Systems  Organization  (DISA 
DNSO). 

Thia  aectko  of  the  Guide  describes  the  services  provided  by  these  organizations  and  gives  a  list  of  key  contacts 
fiorea^ 

This  section  also  teUs  you  how  to  obtain  the  names  of  other  key  network  contacts,  including  the  following: 

•  Host  Adnrinistiatofs 

•  Node  Site  Coofdinaion 

•  hGlhaty  Communications  and  Operations  Command  Contacts. 

Theae  peoide  and  {daces  are  sources  of  network-related  infmnation  and  he^,  so  it  is  impcHtmit  for  you  to 
freailMaiae  youradtf  with  them. 


9.1  The  DDN  Networic  Inforaiation  Center  (NIC) 

The  IHXf  Network  bifiacmatkn  Center  (NTC)  is  located  at  Government  Systems,  Inc.  (GSI)  headquarters  in 
Chm^,  ViigBda.  The  NIC  is  funded  by  die  D^ense  Information  Systems  Agency’s  Defense  Network 
SystsaH  OipBHtion  (EXSA IWSO).  Its  mission  is  to  provide  general  rrference  sovices  to  DDN  users  via 
Idqthone,  cleciiaric  a^  and  U.S.  maiL  The  NIC  is  first  place  to  turn  to  if  you  are  not  sure  who  provides 
tha  service  you  need  or  is  the  right  person  to  contact  Section  6  describes  the  NIC  services  in  detail 


9.L1  General  Refermoe  Service  Provided  by  the  NIC 
The  rac  provides  several  kinds  of  user  assistance.  Its  main  He^i  Desk  phone  numbers  are 
1  (80(9  36S-imiC  OnaidB  the  U.S.) 

1  (709)  802-4S35  (outside  the  U.S.  and  in  the  Washington,  DC,  metro  area) 

The  fine  nnntber  is  toB-^ee.  Service  is  availaUe  Monday  through  Rridi^,  fiom  7  am.  to  7  p.m..  Eastern  time. 

The  NIC  Hrip  Deric  asaiatt  those  iriio  e3q;ierience  problems  with  the  n^work  and  with  terminal-to-TAC  use.  In 
addteon,  dm  NIC  is  hap^  to  auwer  questions  tboOL  any  other  service  outlined  in  diis  section. 
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The  NIC  host  coaqxilBr’s  hostiiMie  and  its  nttworic  address  are: 
NICJ)DNJkiIIL  192.112.36J 

NIC  oidine  services  are  available  24  hours  a  day,  7  days  a  week. 


9.L2  NIC  Onliiie  Contacts 

The  NK!  supports  several  online  midlboxes  to  provide  assistance  in  ^ecific  areas. 


T>pc  of  bquhry 

Network  Mailbox 

General  User  Assistance 

NIC@NIC.DDNJdIL 

TAC  and  Non-TAC  User  Registration 

REGISTRAR@NICJDDNMIL 

Urgent  Securky  Matters 

NIC-ALERT@NIC.DDN.MIL 

Host,  Domain,  and  Net  Registration 

HOSTMASTER@NIC.DDN.MIL 

NIC  J>roiJiifIL  Computer  Operations 

ACTION@NICDDN.MIL 

Comments  on  NIC  PuUications,  Services 

SUGGESTIONS@NICDDNMIL 

SecutiQf  Concerns  sod  Questions 

SCC@NIC.DDNMIL 

Uaage-Sensidve  Billing  Questions 

BILLING@NICDDNJdIL 

Aatomatk  hfail  Service 

SERVICE@NICDDNJMIL 

Rqinting  NIC  Software  Bogs 

BUG-SERVICE@NICDDN.MIL 

9,13  NBC  MaU  Address 


Necwoik  Infonnatioo  Center 
14200  Fnk  Meadow  Drive,  Soke  200 
OMMiny.VA  22021-2219 
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Network  Monitoring  Centers  (NMCs) 

The  tbne  Networic  Monitoring  Centers  are: 

•  The  CXKWS  MILNET  Monitoring  Center  (CMMC)  located  at  DISA  headquarters  in  Washington, 
DC.  The  CMMC  provides  a  toll-£ree  hotline  Trouble  Desk  phrnie  number  for  quick  rqxHting  of 
network  proUons. 

•  The  Pacific  MILNET  Monitning  Center  (PMMC)  located  at  Wheeler  AFB  in  Hawaii. 

•  The  European  MILNET  Monitcving  Center  (EMMC)  located  in  Patch  Barracks,  Vaihingen, 
Germany. 

All  NKKls  provide  operations  siqipat  for  several  DoD  packet-switching  networks.  The  NMCs  concentrate  on 
leal-tiine  n^work  management,  with  the  primary  objective  of  maximizing  each  network’s  operating  efficiency, 
bi  addition,  they  receive  the  first  DDN  security  incident  rqxxts. 

B<dt  Berwiek  and  Newman,  Inc.,  Communications  Division  (BBNCD)  fwovides  DDN  with  operations  and 
terhairri  support.  Configuration  management,  software  maintenance  and  enhancement,  hardware  maintenance, 
and  leqqiied  hardware. 


9Jll  NMC  Services 

NMC  services  include  remote  status  monitoring,  coordination  of  network  outage  troubleshooting  efforts,  and 
24-hoiBS-per-day,  7-dBys-per-week  technical  asastance  to  users.  The  NMCs  typically  wcHk  on  backbone-related 
omi^es  consisting  of  imde  and  circuit  problems;  they  provide  he^  in  determining  whether  host  connectivity 
proUeras  ate  network  rdated. 

Your  Host  Administrator  contacts  the  ippropriate  NMC  to  all  n^otk  hardware  problems,  hardware  field 
service,  ptoUems  with  host  interCaces,  suqiected  node  software  ptoUems,  or  DDN  security  problems. 


9JL2  NMC  Contacts 


C(»<USMMC 

1  (800)  451-7413 

1  (703)  692-2268 

DCA-MMC@DCA-EMS.DCA.MIL 

European  MMC 

on  49  711  687  7766 

STT-CONTROL@FRG.BBN.CX)M 

Pacific  MMC 

1  (808)  656-1472 

PMMC@PAC-MILNET-MC.DCA.MIL 

MHl^ET  Trouble  Desk 

1  (703)  692-5726 
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9JL3  NMC  U^.  Mail  Addresses 


CONUS  MDLNET  Mtxiiuxing  Cbnter 
DCA  Headquarters 
701  South  Courthouse  Rd. 
Arlinglon.VA  22204-2199 
Alin:  MBLNET  Manager 

European  MILNET  Mbnitoring  Cento* 

BBNCD 

DCA-Europe 

Box  1000,  Att:  DED 

APO  AE  09131-4103 


Pacific  MILNET  Monitoring  Center 
Defense  Communications  Agency,  Pacific 
WbederAFB,  HI  96854-5000 
Attn:  P-600 


93  Host  Administrators  and  Node  Site  Coordinators 

Each  host  has  a  lepiesentative  who  serves  as  its  technical  and  administrative  contact — the  Host  Administrator. 
The  Host  Administrator  provides  important  host-related  services  such  as  the  following: 

•  Ctdlaborales  with  the  Droi  PMO  on  security  matters  involving  hosts, 

•  Imerpiets  netwoit  ptdicies  as  they  apply  to  his/her  host, 

•  Decides  which  users  may  access  the  netwrak  (within  the  guidelines  set  by  the  DDN  PMO), 

•  Authorizes  uso*  access  lo  the  MILNET  Terminal  Access  Controllers  (TACs)  and  Mini-TACs, 

•  He^  network  users  with  technical  proUems  involving  hosts,  and 

•  Works  with  the  Network  Information  Center  and  the  Network  Monittxing  Centos  to  provide 
information  and  technical  assistance. 

Each  networic  node,  or  PSN,  has  a  Node  Site  Coordinatw  (NSQ.  The  Node  Site  Cowdinator  is  the  local  site 
representative  who  has  access  control,  accountability,  and  coradination  responsibility  for  the  DDN-owned 
nttwork  hardware,  software,  and  circuits  located  at  the  node  site. 

Occasionally,  one  poson  serves  both  roles.  A  Host  Administrate'  or  Node  Site  Coedinator  may  also  designate 
an  alternate  who  can  assist  with  the  administrative  or  technical  demands  oi  the  position. 

To  find  the  names,  addresses,  telqthone  immbers,  and  network  mailboxes  for  these  contacts,  see  Section  6.3. 
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9.4  Military  Communications  and  Operations  Command  Contacts 


Each  military  department  has  designated  an  organization  to  serve  as  the  primary  DDN  Point  of  Contact. 
Requests  for  information  or  assistance  should  be  directed  to  the  following  wganizaunns; 


Service 

Address 

Telephone 

DSN 

Air  Force 

AFDDN  PMO 

Gunter  AFS,  AL  36224-6340 

1  (205)  279-4075/3290 

446-4075 

Army 

OSAISC,  AS-PLN-RF 

Fort  Huachuca,  AZ  85613-5000 

1  (602)  538-6915 

879-6915 

Navy 

COMNAVTELCOM,  Code  N521 
Washington,  DC  20390-5290 

1  (202)  282-0381/2 

292-0381 

9.5  Defmse  Liformation  Systems  Agency,  Defense  Network  Systems  Organization 
(DISA  DNSO) 

[NOTE:  The  Defense  Communications  Agency.  DCA,  became  the  DISA  in  1991;  in  the  same 
year,  the  Defense  Communications  System  Organization  became  the  DNSO.] 

The  Defense  Information  Systems  Agency,  Ddense  Netwmk  Systems  Organization  (DISA  DNSO)  is  responsible 
for  ovoall  management  of  the  Defense  Data  Netwoik  (DDN).  DDN  Newsletter  58,  available  online  as 
DWI-NEWS/DDN-NEWS-58.TXT  from  the  NICJ)DN.MIL  host,  contains  the  most  current  listing  of  DIS.l 
roiSO  praaonnel  mid  their  areas  of  responsibility.  Contact  the  NIC  to  ensure  that  this  newsletter  still  reflects  the 
most  current  information  on  DNSO  staff  contacts. 


9.6  If  You  Have  a  Network  Use  Problem 


For  Qncstioiis  on: 


Contact: 


Terminid  settings 
Host  login 

MELNETTAC  access 
TAC  login  procedue 
TAC  line  problems 
TAC  phone  numbers 
General  DIW  information 
Host  line  proUems 


Host  Administrate  or  User  Representative 

Host  Administrator  ot  User  Rq;nesentative 

Host  Administrate  fe  your  (vimary  MILNET  host 

Netwek  Information  Center 

TAC  Node  Site  Coedinate  e  the  Monitoring  Center 

NIC  TACNEWS  program 

Network  Information  Center 

Respective  Netwmk  Moniteing  Center 
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SECTION  10.  BIBLIOGRAPHY 


Mtoy  of  the  manuals  and  documents  listed  below  are  cited  in  this  Guide;  others  {sovide  information  that  should 
be  he4>ful  to  you  as  users  of  the  DDN.  When  available,  cndering  numbers  are  given  for  items  that  can  be 
ocdeied  from  die  Defimse  Technical  InftMmation  Center  (DTIQ*  or  from  DISA.  Hardcopies  of  some  of  the 
documents  me  avaihdile  from  SRI  International.  Menlo  Padr,  CA. 

If  the  NIC  (^ers  online  visions,  the  filenames  are  shown  in  Inackets. 


Cited  Referaices 

1.  TAC  Users'  Guide.  DCAC  310-P70-74.  1988  June. 

2.  DDN  Subscriber  Interface  Guide.  Defense  Data  Netwmk,  Program  Management  Office,  Defense 
Infomation  Systems  Agency.  701  S.  Courthouse  Rd,  Arlington,  VA  22204-2199.  1983.  (AD-A132 
877/2). 

3.  DeLauer,  R.D.,  DoD  Poticy  on  Standardization  of  Host-to-Host  Protocols  for  Data  Communications 
Networks.  Of^  d  the  Secretary  of  Defense,  Washington,  D.C.,  1982  Kbrch.  [ien^n-207.txt] 

4.  Cailucci.  F.  C.,  "Autodin  n  Terminatitm,"  Monmandum  fm-  Secretaries  of  the  Military  Dqpartments, 
Deputy  Secretary  of  Defense,  Washington.  D.C..  1982 

5.  l>efense  Information  Systems  Agency,  DDN  NetwtHk  Systems  Organization.  Defense  Data  Network 
Management  Bulletin  76,  TAC  Usor  Registration  Clarification."  Ntenlo  Park,  CA.  SRI  International. 
1990  August  24;  DDN  Mgt  Bui.  76, 1  p.  [ddn'newVddn-mgt-buUetin-76.txt] 

6.  RPC  1169,  Explaining  the  Role  ofGOSIP.  1990  August  15  p.  [rfc/rfcll69.txL] 

7.  Defense  Information  Systems  Agency,  Drfense  Network  Systems  OrganizadoiL  Defense  Data  Netwmk 
Security  Bulletin  9003,  "Security  Violation  Reporting."  Menlo  Park,  CA  SRI  Intmnational,  DDN 
Security  Coordination  Center,  1990  Fetauary  15;  DDN  Security  Bui.  9003.  2  p.  tscc/ddn-security-9003] 

8.  RPC  1177,  FYI  on  Questions  and  Answers:  Answers  to  commonly  asked  "new  Internet  user"  questions. 
1990  August  24  p.  (Also  FYI  4)  [rfc/rfcll77.ttt] 

9.  Defease  Informatkm  Systems  Agency.  DDN  Network  Systems  Organization.  Defense  Data  Network 
Management  Bulletin  101,  "MILNET  TAC  User  Validation  and  Registration."  Chantilly,  VA.  GSI, 
Inc.,  1992  Sqttember  24;  DDN  Mgt  Bui.  101,  5  p.  [ddn-news/ddn-mgt-buUetin-lOl.txt] 


'Otdor  from:  DTKJ,  Camoon  station,  Alexandria,  VA  22314.  Tel:  (202)  274-7633. 
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acoustic  coqria  A  type  of  modem  that  converts  digital  signals  into  sound  for  transmission  through 

telqiiKNie  lines  and  perfwms  the  reverse  (^ration  when  receiving  such  signals.  Acoustic 
couplers  generaUy  have  cups  into  which  the  telq))HH>e  handset  is  placed  to  make  the 
connection. 

anonymous  login  conventian 

Standard  username  (anonymous)  and  password  (guest)  that  allows  a  user  to  log  in  within 
FTP  for  the  purpose  of  retrieving  an  uninotected  public  access  file. 

ARPANET  Packet-switched  netwmk  devekqied  by  the  Defense  Advanced  Research  Projects  Agoicy. 

ASN  Autonomous  System  Numlm.  A  number  assigned  by  the  NIC  to  an  autonomous  netwt^ 

that  request  connection  to  the  Internet 

backbone  The  nodes  (PSNs),  the  TACs,  and  the  tdqthone  lines  connecting  them  that  fwm  the  c(»e 

of  the  DDN. 

Brrit  Beranek  and  Newman,  Inc.,  Communications  Division;  a  major  hardware  and  software 
developer  fiir  the  DDN. 

Bits  per  second.  The  unit  used  for  nKasuring  line  speed.  i.e..  the  number  of  informadcm 
units  transmitted  per  second. 

Strftware  differentiation  betweoi  iqqtercase  and  lowercase  characters. 

ConqiutBr  Emogency  Reqxmse  Team,  the  DARPA-qx>nsoted  group  responsible  fw 
coordinating  many  security  incidrat  response  efforts. 

A  type  of  network  connection.  A  circuit-switched  coimection  is  a  continuous  electrical 
connection  e^ablished  between  sending  and  receiving  users  for  their  exclusive  use.  The 
connection  remains  active  until  it  is  closed  by  the  using  parties. 

A  gateway;  that  is,  a  compiner  that  intercmmects  networks. 

An  access  path  between  two  ports  on  a  netwmk,  established  far  data  transmisskm  between 
the  ports. 

NGlitacy  acronym  for  the  Condnenlal  United  States. 

Defense  Advanced  Research  Project  Agency.  The  agency  that  created  and  administered  t!ie 
ARPANET. 

DCA  DCSO  Defense  Gmmunications  Agency,  Defense  Communications  System  Organization;  the 

groq)  lesponsiUe  for  atbninistering  the  DDN.  (Now  known  as  the  Defense  Information 
Systems  Agency,  D^ense  Network  Systems  Organization — DISA  DNSO.) 


BBNCD 

bps 

case  sensitive 
CERT 

ckcuit-switched 

concentiator 

coonectioo 

CONUS 

DARPA 
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DDN 

DOS 

mSADNSO 

DNS 

DoD 

DRI 

DSN 

Dnc 

H^N 

FTP 

FYl 

gateway 

QOSIP 


iKMt 


IMP 

INCC 

iafiAlia 

mniiM 

iaaBnMCwcilt 


Defease  Dtta  Netwcxk.  The  DoD  long-haul,  packet-switched  computer  communications 
netwofk  that  includes  the  MILNET  as  (me  of  its  subnetworks. 

The  DDN  Installation  and  Information  Services  contract,  which  encompasses  the  NIC  and 
its  services.  Also  the  NIC  handle  of  the  DIIS.DDN.MIL  host 

Defense  Information  Systems  Agency.  Defense  Network  Systems  Organization.  Formerly 
the  DCA  DCSO  (see  tdxrve). 

Domain  Name  System.  The  hierarchical,  distributed  database  used  for  host  name  and 
adcbess  resolution  that  has  rqrlaced  the  need  for  a  centralized  host  table. 

Dqartment  of  Defense. 

Defease  Research  Internet  A  network  that  will  provide  state-of-the-art  internetworking 
services  for  the  DoD.  It  is  still  in  the  planning  stages. 

Defense  Switched  Netwmk.  A  proprietary  Goverrunent  telephone  network. 

Defease  Technical  Information  Coiter,  Cameron  Station,  Alexandria,  VA  22314.  A 
dqrositary  for  many  DoD  technical  reports. 

Fully  Qualified  Domain  Name.  The  complete  hostname  that  reflects  the  domains  of  which 
the  host  is  a  put 

File  Transfer  ProlocoL  A  netwcxk  utility  for  cc^ying  files  across  the  network;  defined  in 
RPC  959. 

A  "For  Your  Infixmation"  document  issued  also  as  an  RFC,  that  contains  infcxmation  of 
general  iaterest  lo  the  fanemet  ccxnmunity. 

A  coaqxiter  that  inmcoonects  networks. 

Govemment  Open  Systems  Interconnecticm  Profile.  A  document  that  addresses  the  DDN’s 
{riaoned  traositioa  firom  TCP/IP  protoccds  to  OSI  protocols. 

Unique  chaiacier  string  kkatifier  assigned  to  each  entry  in  the  NIC  WHOIS  database. 

A  computer  coimecied  to  a  PSN  on  the  DDN. 

A  name  that  officiaDy  kkntifi^  each  ccxnputer  attached  to  the  DDN. 

Interface  Message  Processor,  see  PSN. 

The  Iittemet  Control  Center.  The  sovice  center  that  provides  hdp  to  Air  Force 
concentrator  users. 

The  electronic  mini  program  developed  by  BBNCD. 

The  qwdfic  IP-baaed  internetwork  whkh  the  DDN  is  a  part 
A  netwoA,  such  as  the  DDN.  that  consists  of  many  inteiconnected  networks. 
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IP 

IR 

Kennit 

LAN 

kn^-haul  net 

maiAridge 

MIL  STD 
MILNET 
modem 

MTAC 

NETINPO 

oetwok 

NIC 

NICJlDNJdlL 

NICNAME 

NK/Qmy 

NMC 

Nl^ 

node 

NREN 


Intenaet  Fkotocd.  A  DoD  standard  jRDtocol  that  allows  dissimilar  hosts  to  connect  to  each 
other  through  the  DDN,  defined  in  RFC  791. 

Internet  Registry.  The  ftinctkm  at  the  NIC  that  assigns  official  IP  netwoiL  numbers. 

An  enor-checking  file-transfer  i»otocd  used  to  copy  files  from  one  computer  to  another. 
Also  the  name  given  to  the  public  domain  software,  distributed  by  Columbia  Univosity, 
that  siqtpotts  this  protocd. 

Local  Area  Network.  A  network  of  directly  connected  machines  usually  located  within  10 
miles  of  one  another. 

A  netwrrt  spanning  long  geograirfiic  distances,  usually  coiuiected  by  telephone  lines  w 
satdlite  radio  links. 

A  gateway  between  the  MILNET  and  the  Internet,  through  which  mail  and  other  data 
passes. 


Military  Standard.  The  official  military  version  of  a  specification. 

The  Droi  unclassified  operatirmal  military  n^tnk. 

A  device  that  converts  digital  signals  into  analog  signals  (and  back)  for  transmission  over 
tdqjhone  lines  (modulator/demodulator). 

Or  Mini-TAC.  A  new,  improved  machine  that  allows  remote  network  access  in  essentially 
the  same  manner  as  a  TAC,  but  accommodates  a  wider  variety  of  (grating  systems. 

The  name  of  the  publicly  accessible  directory  on  the  NIC.DDNMIL  host  that  stores  many 
files  oS  interest  to  users  of  the  n^work. 

The  hardware,  software,  and  connectioos  needed  to  distribute  the  processing  of  data  in  a 
lehaUe  nd  efficient  manner  and  to  enaUe  users  to  exchange  and  share  that  data. 

DDN  Network  Information  Center,  located  at  GSI  headqumters  in  Chantilly,  VA. 

The  hostname  of  the  NIC  host  Its  network  address  is  192.112.36.S. 

SeeWHOIS. 

A  general  infonnatioa  program  on  NIC.DroiMlL. 

Network  Monitoring  Center.  The  CCX^S  MILNET  NMC  is  located  at  701  S.  Courthouse 
Rd..  Arlington,  VA  22204-2199.  Others  ate  located  in  Eurv^  and  Hawaii. 

The  Natkmal  Sdence  Foundation’s  N^wotk  Service  Center.  The  center  diat  provides 
airport  for  die  NSFNet  backbone.  The  NNSC  also  puUishes  the  Internet  Resource  Guide. 

On  the  DIX4,  a  packet  switch  or  PSN.  A  computer  that  handles  network  message  traffic. 

The  hfotional  Research  and  Education  Network,  the  planned  high-speed  national  network 
dut  will  provide  a  platform  for  research  and  educational  networking  efforts. 
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NSC  Node  Site  Cocxdiiiator.  The  local  DDN  contact  responsible  for  node  or  TAC  equipment 

NS’Net  The  packet-switched  network  that  is  the  backbone  of  much  of  the  Internet 

NSO  Networic  Security  OBica.  The  NSO  is  re^ronsible  for  setting  DDN  security  policy  and 

ovecseeing  its  implonentation. 

Nils  Natioaal  Technical  Infonnation  So^ce,  U.S.  Dqyartment  of  CcMnmerce,  SfHingfield.  VA 

22151,  (703)  487-4650.  A  national  depository  for  unclassified  technical  documents. 

OCX^IUS  A  military  acronym  for  "Outside  the  Continental  U.S." 

operating  system  Sttftware  that  supovises  and  oMitiols  tasks  on  a  computer. 

OSD  Office  of  the  Secretary  of  Defense. 

packet  switchmg  A  data  transmission  system  that  uses  addressed  packets,  and  in  which  a  communications 
chatmel  is  occiqned  only  for  the  duration  of  the  packet  transmission. 

pathname  A  character  string  that  fully  identifies  a  file.  Pathnames  normally  contain  (<»  imply)  device 

aad/ct  directaty  names  and  a  filename  qtedfication.  FTP,  TELNET,  and  electronic  mail 
do  not  specify  a  standard  pathname  convention.  Each  user  must  follow  the  file  naming 
conventkms  the  file  systems  he  wishes  to  use. 

padeet  The  basic  unit  of  data  transmitted  over  the  DDN.  Each  packet  cemtains  a  header,  which 

consists  addressing  and  other  control  information  and,  tqrtionally,  any  associated  data 
destined  for  a  network  user  process. 

POC  Pmnt  Contact 

protocol  Technical  qiecifications  governing  die  format  and  timing  of  information  exchange  between 

two  communicating  software  processes. 

PSN  Fadoet  Switch  Node.  A  store-and-forward  packet  switch  (formerly  called  an  IMP). 

RFC  Request  For  Conunent  A  series  of  technical  notes  describing  DARPA  and  DDN  research 

and  devdopment  particularly  in  the  areas  of  protocol  design  and  internetworking. 

Availahle  for  anonymous  FTP  at  NICJ>DN.MIL  in  directory  RFC:. 

see  The  Security  Coordination  Center,  located  at  die  NIC,  that  is  responsible  fix’  collecting 

aecority-idaled  infonnation,  coopentting  with  the  NSO  in  security  incident  re^iionse,  and 
issuing  Security  Bulletins. 

server  A  process  providing  a  generalized  service  to  subscribing  user  processes.  Server  processes 

normally  listen"  on  a  nmworic  address,  ready  to  respond  to  an  incoming  smvice  request 
The  FTP  Server  is  such  a  process;  it  responds  to  file  transfer  requests  from  FTP  usos. 

SDIVICE  The  name  of  the  NIC’s  automatic  mail  server,  SERVICE@NIC.DDNXIL.  Send  a 

message  to  ^RVICE@NICI>rof.MIL  with  subject  HELP  fat  more  information. 

aeaiiMi  The  thne  duiiitg  which  a  connectioo  remains  open  between  a  usm’  and  server  port  on  a 

network.  For  example,  in  an  FIT  session,  the  end-user  invokes  FTP,  names  the  server  host 
he  wishes  to  connect  with,  issues  FTP  commands,  mid  logs  off. 
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SIC 

SkflP 

SRI 

SunOS 

TAC 

TAC  Access  Code 
TAC  Userid 
TACACS 

TACNEWS 

TCP/BP 

TELNET 

lerauBd 

TIP 

UNIX 

WHOIS 


Special  Interest  Groq).  An  online  mailing  group  whose  members  exchange  information  on 
a  particular  tofw. 

Organization  or  facility  where  a  host  is  located. 

Simi^  MaO  Transfer  Protocol.  Opined  in  RFC  821. 

Logical  address  of  a  communkatkxis  access  point  to  a  specific  device  or  program  on  a 
host 


SRI  International,  Menlo  Park,  CA.  f(»mer  location  of  die  DDN  Netwtnk  Information 
Center  and  early  contributes  to  the  development  of  the  DDN. 

Sun  Microcomputer  Systems’  {scqnetary  UNIX-based  operating  system.  The  operating 
systmn  used  by  the  NIC  host 

Terminal  Access  Controller.  A  qiecial  type  of  computo'  attached  to  a  PSN.  It  allows 
direct  terminal  access  to  the  DDN  backb^. 

Password  assigned  to  MILNET  TAC  users  fts  TAC  login. 

Alphanumeric  character  string  that  identifies  a  TAC  user  iqxm  TAC  login. 

TAC  Access  Contnd  System.  A  password  system  that  limits  use  of  TACs  to  authorized 
users. 

NIC  program  for  reading  DDN  Newrietters,  Bulkttns,  and  other  items  of  interest  to  TAC 
users. 

Transmissioo  Control  Protocol/Inteniet  Protocol.  DoD  standard  netwe^  protocols  defined 
in  RFC  793  (TCP)  and  RFC  791  (IP). 

A  ptottxxd  for  opemng  a  transptuent  connectimi  to  a  distant  host;  defined  in  RFC  8S4. 

A  communication  device  that  lets  a  user  send  infwmatitMi  to  a  computer  by  typing  on  a 
keyboard.  It  prints  reqxmses  fiom  tbe  computer  on  paper  or  a  screen. 

Teraimal  Interface  Processor.  A  predecessm  of  the  TAC.  serving  a  siinilar  function.  See 
TAC. 

An  AT  &  T  Ben  Laboratories  proprietary  operating  system  that  runs  on  large  and  small 
conqioiets.  It  has  become  widely  used  in  tte  scienti&  research  and  develqiment 
conuntmity. 

A  human  end-user  or  an  automated  user  process  audiotized  to  access  networit  services. 
NIC  prognun  used  to  access  the  NIC  electronic  white  pages  database. 
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APPENDIX  A.  NETWORK  RESOURCES 


One  (tf  the  questioos  new  users  firequently  ask  when  they  finally  get  access  to  the  network  is,  "Now  what? 
Whitt’s  out  Ifaae?"  This  section  lists  a  few  places  you  can  look  ftH-  more  information  about  what  is  available  to 
buemet  users. 


Special  biterest  Groups 

An  inqxartant  pmt  of  the  bitemet  are  its  many  online  Special  Interest  Grotq)s  (SIGs),  which  discuss  topics 
ranging  from  atificial  intelligence  to  Zenith  PCs.  A  SIG  is  an  electronic  mailing  list  dedicated  to  the  discussion 
a  particular  b^.  SIGs  are  a  good  way  fw  a  new  user  to  learn  mwe  about  the  network.  Anycme  can 
ccntribute  to  a  SIG  by  sinq)ly  sotding  mail,  and  most  SIGs  are  open  !(»  anyone  to  join.  Information  m  network 
SIGs  can  be  found  in  a  file  nicknamed  the  List-of-Lists.  a  master  list  of  SIGs  with  a  brief  description  of  each 
gfoiq>  and  how  to  join  it 

For  users  who  have  never  done  a  file  transfer  before,  this  is  a  perfect  first  opportunity.  You  can  use  FTP  to 
copy  the  List-<tf-Lists  from  the  FTPJ*nSC.SRI.COM  host  by  logging  in  with  "userid  anonymous"  and 
"PASSWORD  guest"  and  using  the  pathname  NETINFO:INTEREST-GROUPS. 

Note  that  many  individual  hosts  redistribute  mail  f<x  their  users — that  is.  mailing  list  messages  or  digests  are 
delivered  once  to  a  single  local  mailbox,  and  then  they  are  announced  or  forwarded  to  a  list  of  interested  local 
uaers.  Mail  redistribution  diminates  dte  need  for  the  local  mailer  to  iHocess  myriad  copies  of  the  same  message 
dnected  to  different  users  imd  so  conserves  local  computn*  resources.  Bef(»e  adding  your  name  to  a  SIG 
distribittion  list,  ask  yom  Host  Administrator  or  User  Representative  if  SIG  or  digest  mail  is  redistributed  on 
your  host  or  posted  in  a  coitralized  place  to  be  read  by  ^  local  users. 

In  addition,  aU  traffic  on  the  MILNET  is  subject  to  usage-sensitive  billing,  so  befixe  adding  your  name  to  a  SIG, 
be  sure  diat  the  mail  traffic  you  would  genoate  is  consistoit  with  the  usage  policies  of  your  host 


NNSC  Intanet  Resource  Guide 

The  NSF  Network  Service  Cento'  (NNSQ  compiles  and  makes  available  an  Internet  Resource  Guide.  The  goal 
of  the  guide  is  to  increase  the  visibility  of  vmious  Internet  resources  diat  might  he^)  users  do  their  w(»k  better. 
While  not  yet  an  mchaustive  list,  the  guide  is  a  useful  compendium  of  many  resources  and  can  be  very  helpful  to 
a  new  user. 

In  the  NNSC  pride,  resources  are  grouped  into  sections  by  type.  Current  secticms  include  descriptions  of  online 
Ubrary  catalogs,  data  archives,  online  white  pages  directory  services,  networks,  network  infamation  centers,  and 
computational  resources  such  as  supocomputers.  Each  entry  contains  the  following  information: 

•  a  deacr^Xion  of  the  resource, 

•  an  identification  oS  who  can  use  the  resource, 

•  an  etqdaruttkm  of  how  to  reach  the  resource  netwok  via  the  Intanet, 

•  a  list  (rf  contacts  for  more  information. 


DSAFT 


85 


DRAFT 


APPENDIX  A 


NIC  60001,  October  1992 


The  NNSC  distributes  the  list  dectronically.  To  receive  a  guide,  or  to  get  (xi  a  mailing  list  that  alerts  you  when 
it  is  iqxlated,  send  a  message  to  RES0URCE-6UZDE-REQUESTeNNSC.NSF.NET. 


FYI  Documoits 

"FYIs*  are  a  soies  qtecial  RFCs.  The  FYI  documents  address  information  that  is  of  genial  interest  to  the 
Internet  user  conununity.  They  do  not  define  standards  or  contain  protocol  specifications.  Rather,  they  address 
more  general  tofncs,  provide  insight  into  Internet  conventions,  answer  commonly  asked  questions,  contain 
backgroimd  or  historical  information,  or  provide  resource  information  such  as  bibliogr^hies  or  descriptions  of 
software.  Sone  FYIs  are  adAessed  qtecifically  to  new  users. 

Because  FYIs  are  also  RFCs,  they  ue  listed  aloig  with  all  the  other  RFCs  in  the  RFC  Index.  However,  the  file 
fyi/fyi-index.txt  on  the  NIC  host  lists  only  the  FYIs.  Each  index  notes  both  the  FYI  numbo-  and  the  RFC 
nunAer  of  each  FYI.  You  can  obtain  the  FYI  Index  online  by  FTPing  o'  by  requesting  it  through  the 
SERVICE@NIC.DDN.MIL  mail  service.  See  Section  S.1.2  fo  FTP  guidelines  and  Section  6.3.S  for  directions 
on  retrieving  information  via  SERVICE. 


NIC  Contacts  Files 

Often  users  need  to  conmunicate  with  the  official  Point  (tf  Contact  (POC)  responsible  for  a  specific  network  or 
doGtam.  While  this  mformatioi  is  available  via  the  WHOIS  {xogram  on  the  NIC  host,  as  described  in  Section 
63.1,  the  NIC  also  provides  files  that  contain  compilations  of  the  contacts  for  domains  and  networks.  These 
fites  are  iqidated  weekly  and  provide  a  central  resource  fw  useful  domain  and  network  POC  information. 

•  tietitifiVaetwofk-cotitacts.txt  lists  all  assigned  networks  by  number  and  lists  the  name  of  the 
network,  plus  the  name,  phone  number,  and  electronic  mailbox  for  each  POC. 

•  netinft)/dottuun-oontacts.txt  is  raganized  by  domain  name  and  lists  the  name,  phone  number,  and 
dectronic  mailbox  for  each  domain  POC. 

Wtt  die  network  information  sources  and  contacts  just  outlined  and  the  tools  introduced  in  the  previous  section, 
yon  ate  now  ready  to  explore  the  netwrxk  on  your  own. 
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APPENDIX  B.  COMMONLY  ASKED  QUESTIONS 


Here  are  answers  to  some  of  the  questions  most  conunonly  asked  by  users.  The  selections  were  made  from 
questi(Mis  addressed  to  the  DDN  Network  Information  Center.  (See  Sections  6.1  for  NIC  network  and  U.S.  mail 
addresses.) 


1.  I  want  to  send  mail  to  my  colleague,  John  Smith.  What  is  his  network  mailbox? 

Answer 

The  NIC  provides  an  online  program  called  WHOIS  (or  NICNAME)  that  contains  the  names,  addresses, 
I^KMie  numbo^,  and  online  mailboxes  of  many  network  users.  Since  some  Host  Administrators  install 
this  {ROgram  on  their  host,  you  should  ask  him/her  if  it  is  available  locally.  Alternatively,  you  may 
make  a  TELNET  cotmecdon  to  NIC.DDN.MIL  and  use  the  WHOIS  program  running  on  the  NIC  host. 
(Login  to  NIC.DDN.MIL  is  not  required.)  The  WHOIS  program  may  also  be  accessed  via  electronic 
mail  Send  a  message  to  SERVIC^NIC.DDN.MIL  and  include  the  word  WHOIS  and  the  item  you 
wish  to  search  for  in  the  subject  line  of  your  message.  You  will  receive  an  answer  ovaoight.  For  more 
informatKMi  on  using  SERVICE,  see  Secdon  6.3.S. 

2.  This  TAC  phrxie  number  doesn’t  work.  What  should  I  do? 

Answer 

The  Network  InfrHmadon  Center  can  try  to  access  the  TAC  from  its  site  to  detmnine  if  the  problm  is 
in  the  TAC  ot  if  it  relates  to  your  equipment  or  the  procedure  you  are  using.  If  the  problem  is  the 
TAC,  we  can  give  you  phone  numbers  for  otho*  TACs.  We  can  help  you  coordinate  with  the  MILNET 
MonitCHing  Center  to  report  the  TAC  problem. 


3.  I  will  be  traveling  and  need  to  log  in  to  read  my  mail.  How  can  I  frnd  a  TAC  phone  number  to  use 
while  I’m  on  the  road? 

Answer 

You  can  locate  TAC  phone  numbers  in  sevoal  ways.  The  back  of  your  TAC  card  lists  many  of  them. 
The  TACNEWS  program  available  on  the  NIC.DDN.MIL  host  has  a  menu  opdon  that  will  show  you 
the  three  TACs  closest  to  a  phone  number  you  provide.  TACNEWS  also  provides  lists  of  phone 
nmnbers  for  TACs  both  within  and  outside  the  U.S.  See  Secdon  6.3.3  for  an  example  of  TACNEWS 
usage.  In  addition,  if  you  call  the  NIC  Help  Desk,  we  will  be  h^y  to  provide  you  with  phone 
numbers  of  TACs. 


4.  What  is  the  difference  between  the  MILNET  and  the  DDN? 


Answer. 

The  MILNET  is  a  wide  area  network  that  consdtutes  one  subnetw(»k  of  the  DDN.  The  MILNET 
carries  unclassified  rqreradonal  data.  It  is  the  segment  of  the  DDN  that  is  connected  to  the  Internet. 
The  otho'  subnetworks  of  the  DDN  carry  classified  information  and  are  standalone  netwrnks. 
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S.  What  is  the  difference  betwera  the  MILNET  and  the  Intemet? 

Answer 

The  Intranet  is  a  collection  of  TCP/IP-based  wide  area  and  local  area  networks  that  are  interconnected 
by  various  gateways  so  that  users  on  one  networic  can  communicate  to  usras  on  any  of  the  other 
networks.  (In  addition,  some  non-TCP/IP-based  netwcaks,  such  as  BITNET,  are  accessible  to  Internet 
usras  via  electronic  mail.  These  netwraks  are  usually  not  strictly  considraed  a  part  of  "the  Intranet") 
The  MIIJ*1ET  is  a  wide  area  network  that  is  connected  to  the  Internet  via  several  gateways  called 
mailbridges. 


6.  I  see  a  ctmnection  on  my  host  from  a  netwoik  number  I  don’t  recognize.  How  can  I  find  the  number  of 
someone  to  contact  on  that  netwoik  to  check  on  this  connection? 

Answer 

Evray  IP  netw(»k  number  assigned  by  the  Internet  Registry  at  the  NIC  has  a  registraed  Point  of  Contact 
(POC)  who  is  responsible  for  that  netwoik.  To  find  a  particular  POC,  you  can  look  up  the  number  of 
the  networit  via  the  NIC’s  WHOIS  {Hogram.  Search  only  on  the  networir  portion  of  the  numbra*  and 
type  the  local  poitions  as  zeroes.  (See  Section  8.4  fix'  a  Ixief  explanation  of  netwrak  addressing.  See 
Section  6.3.1  fw  how  to  use  WHOIS.)  In  tuidition,  the  NIC  provides  a  publicly  accessible,  regularly 
updated  file  that  lists  all  the  POCs  for  each  netw(»k  number  assigned.  The  file  is 
netinfo/network-contacts  .txt.  The  POC  information  is  listed  by  netwoik  number. 


7.  How  do  I  get  a  TAC  card? 

Answra: 

Before  you  can  get  a  TAC  card,  you  must  have  an  account  on  a  host.  Then  the  Host  Administrate  of  a 
MILNET  host  (that  is,  a  host  wh^  address  is  on  netwek  26)  must  ^iprove  a  TAC  card  fe  you.  See 
Section  4  for  a  more  cenidete  explanation  of  TAC  cards  and  TAC  usage. 


8.  What  is  an  RFC? 

Answra: 

As  RFC  1177  [8]  exidains,  the  Request  for  Comments  documents  (RFCs)  are  weking  notes  of  the 
Intranet  research  and  development  community.  A  document  in  this  series  may  be  on  essentially  any 
topic  related  to  computer  communication,  and  may  consist  of  anything  from  a  meeting  report  to  the 
specification  of  a  standard.  Most  RFCs  are  descriptions  of  network  protocds  or  services,  often  giving 
detailed  procedures  and  formats.  These  RFCs  generally  provide  infrxmation  in  sufficient  technical  detail 
to  enaUe  devdopen  to  create  impfementations.  Othra^  RFCs  iqxirt  on  the  results  of  policy  studies  or 
summarize  the  work  of  technical  committees  or  woikstKq>s.  Currently,  all  Internet  standards  are 
puUished  as  RFCs,  but  not  all  RFCs  are  standards.  RFCs  are  publicly  available  on  the  NIC.DDN.MIL 
host  Indexes  oi  RFCs  txganized  by  number  On  revrase  order  with  the  most  current  RFC  at  the  top),  by 
audior,  or  by  title  are  available  from  the  NIC  as  well.  Hardcopies  are  available  from  SRI  International 
in  Menlo  Ruk,  CA  (the  former  NIC). 


9.  May  I  be  roistered  in  the  WHOIS  database? 


Answer 

Any  TAC  uara^  must  be  registered  with  the  NIC.  In  addition,  any  other  MILNET  user  can  be  added  to 
the  WHOIS  database  if  he  has  a  working  network  mailbox.  Infrxmation  regarding  a  registered  user. 
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such  as  his  address  and  netwoik  mailbox,  is  visiNe  via  the  WHOIS  program.  Thus,  WHOIS  acts  as  a 
"udiile  pages"  dnectory  of  netw(»k  users,  enabling  other  users  to  ascoiain  whoe  to  send  mail  to  them, 
either  electronically  or  via  the  U.S.  postal  service.  To  register  in  the  database,  fill  out  the  template 
provided  in  Section  6.2.1  (or  the  version  currently  approved  and  located  in  the  NIC  teir^lates 
directory)  and  return  it  rmline  to  REGISTRAR0NIC.ddn.mil.  The  NIC  dqjends  on  users  to  send 
iqxlated  infiormation  whenever  their  addresses  mailboxes  change. 
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